chore: 清理HuggingFace Space仓库，只保留部署必需文件

.dockerignore

@@ -1,54 +0,0 @@
-# Rust build artifacts
-target/
-Cargo.lock
-
-# Node.js dependencies and build artifacts
-admin-ui/node_modules/
-admin-ui/dist/
-admin-ui/pnpm-lock.yaml
-admin-ui/tsconfig.tsbuildinfo
-admin-ui/.vite/
-
-# Version control
-.git/
-.gitignore
-
-# IDE and editor files
-.idea/
-.vscode/
-*.swp
-*.swo
-*~
-
-# Claude/AI
-.claude/
-CLAUDE.md
-AGENTS.md
-
-# CI/CD
-.github/
-
-# Documentation and examples
-*.md
-README.md
-config.example.json
-credentials.example.*.json
-
-# Development and test files
-src/test.rs
-src/debug.rs
-test.json
-tools/
-
-# OS-specific files
-.DS_Store
-Thumbs.db
-
-# Local configuration (keep templates only)
-config.json
-credentials.json
-
-# Docker files
-Dockerfile
-.dockerignore
-docker-compose*.yml

.github/workflows/build.yaml

@@ -1,85 +0,0 @@
-name: Build Artifacts
-
-on:
-  push:
-    tags:
-      - 'v*'
-  workflow_dispatch:
-    inputs:
-      version:
-        description: 'Version label for artifacts (e.g., 2025.12.1)'
-        required: true
-        default: '2026.1.1'
-
-permissions:
-  contents: read
-
-jobs:
-  build:
-    strategy:
-      fail-fast: false
-      matrix:
-        include:
-          - platform: macos-latest
-            target: aarch64-apple-darwin
-            name: macOS-arm64
-          - platform: macos-latest
-            target: x86_64-apple-darwin
-            name: macOS-x64
-          - platform: windows-latest
-            target: x86_64-pc-windows-msvc
-            name: Windows-x64
-          - platform: ubuntu-22.04
-            target: x86_64-unknown-linux-gnu
-            name: Linux-x64
-          - platform: ubuntu-22.04-arm
-            target: aarch64-unknown-linux-gnu
-            name: Linux-arm64
-
-    runs-on: ${{ matrix.platform }}
-
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v4
-
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: '20'
-
-      - name: Setup pnpm
-        uses: pnpm/action-setup@v4
-        with:
-          version: 9
-
-      - name: Install admin-ui dependencies
-        working-directory: admin-ui
-        run: pnpm install
-
-      - name: Build admin-ui
-        working-directory: admin-ui
-        run: pnpm build
-
-      - name: Setup Rust
-        uses: dtolnay/rust-toolchain@stable
-        with:
-          targets: ${{ matrix.target }}
-
-      - name: Setup Rust cache
-        uses: Swatinem/rust-cache@v2
-        with:
-          shared-key: "rust-cache-${{ matrix.target }}"
-          cache-on-failure: true
-
-      - name: Build app
-        run: cargo build --release --target ${{ matrix.target }}
-
-      - name: Upload build artifacts
-        uses: actions/upload-artifact@v4
-        with:
-          name: kiro-rs-${{ github.event.inputs.version || github.ref_name }}-${{ matrix.name }}
-          if-no-files-found: error
-          compression-level: 6
-          path: |
-            target/${{ matrix.target }}/release/kiro-rs
-            target/${{ matrix.target }}/release/kiro-rs.exe

.github/workflows/docker-build.yaml

@@ -1,87 +0,0 @@
-name: Build and Push Docker Images
-
-on:
-  push:
-    tags:
-      - 'v*'
-  workflow_dispatch:
-    inputs:
-      version:
-        description: 'Version tag for Docker images (e.g., 2025.12.1)'
-        required: true
-        default: '2026.1.1'
-
-permissions:
-  contents: read
-  packages: write
-
-jobs:
-  build:
-    runs-on: ${{ matrix.runner }}
-
-    strategy:
-      fail-fast: false
-      matrix:
-        include:
-          - platform: linux/amd64
-            runner: ubuntu-latest
-            arch: amd64
-          - platform: linux/arm64
-            runner: ubuntu-22.04-arm
-            arch: arm64
-
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v4
-
-      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v3
-
-      - name: Log in to GitHub Container Registry
-        uses: docker/login-action@v3
-        with:
-          registry: ghcr.io
-          username: ${{ github.repository_owner }}
-          password: ${{ github.token }}
-
-      - name: Build and push
-        uses: docker/build-push-action@v6
-        with:
-          context: .
-          platforms: ${{ matrix.platform }}
-          cache-from: type=gha
-          cache-to: type=gha,mode=max
-          push: true
-          provenance: false
-          tags: ghcr.io/${{ github.repository_owner }}/kiro-rs:${{ github.event.inputs.version || github.ref_name }}-${{ matrix.arch }}
-          labels: |
-            org.opencontainers.image.source=https://github.com/${{ github.repository }}
-            org.opencontainers.image.description=Kiro.rs Docker Image
-
-  manifest:
-    needs: build
-    runs-on: ubuntu-latest
-    steps:
-      - name: Log in to GitHub Container Registry
-        uses: docker/login-action@v3
-        with:
-          registry: ghcr.io
-          username: ${{ github.repository_owner }}
-          password: ${{ github.token }}
-
-      - name: Create and push multi-arch manifest
-        run: |
-          VERSION="${{ github.event.inputs.version || github.ref_name }}"
-          IMAGE="ghcr.io/${{ github.repository_owner }}/kiro-rs"
-
-          # Create manifest for version tag
-          docker manifest create ${IMAGE}:${VERSION} \
-            ${IMAGE}:${VERSION}-amd64 \
-            ${IMAGE}:${VERSION}-arm64
-          docker manifest push ${IMAGE}:${VERSION}
-
-          # Create manifest for latest tag
-          docker manifest create ${IMAGE}:latest \
-            ${IMAGE}:${VERSION}-amd64 \
-            ${IMAGE}:${VERSION}-arm64
-          docker manifest push ${IMAGE}:latest

.github/workflows/docker-build.yml

@@ -1,55 +0,0 @@
-name: Build and Push Docker Image
-
-on:
-  push:
-    branches:
-      - master
-    paths-ignore:
-      - '**.md'
-      - '.gitignore'
-  workflow_dispatch:
-
-env:
-  REGISTRY: ghcr.io
-  IMAGE_NAME: ${{ github.repository }}
-
-jobs:
-  build-and-push:
-    runs-on: ubuntu-latest
-    permissions:
-      contents: read
-      packages: write
-
-    steps:
-      - name: Checkout repository
-        uses: actions/checkout@v4
-
-      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v3
-
-      - name: Log in to GitHub Container Registry
-        uses: docker/login-action@v3
-        with:
-          registry: ${{ env.REGISTRY }}
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-
-      - name: Extract metadata
-        id: meta
-        uses: docker/metadata-action@v5
-        with:
-          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
-          tags: |
-            type=raw,value=latest,enable={{is_default_branch}}
-            type=sha,prefix={{branch}}-
-
-      - name: Build and push Docker image
-        uses: docker/build-push-action@v5
-        with:
-          context: .
-          push: true
-          tags: ${{ steps.meta.outputs.tags }}
-          labels: ${{ steps.meta.outputs.labels }}
-          cache-from: type=gha
-          cache-to: type=gha,mode=max
-          platforms: linux/amd64

.gitignore

@@ -1,12 +0,0 @@
-/target
-/CLAUDE.md
-/AGENTS.md
-/config.json
-/credentials.json
-/.idea
-/test.json
-/Cargo.lock
-/admin-ui/node_modules/
-/admin-ui/dist/
-/admin-ui/pnpm-lock.yaml
-/admin-ui/tsconfig.tsbuildinfo

Cargo.toml

@@ -1,34 +0,0 @@
-[package]
-name = "kiro-rs"
-version = "2026.1.5"
-edition = "2024"
-
-[profile.release]
-lto = true
-strip = true
-
-[dependencies]
-axum = "0.8"
-tokio = { version = "1.0", features = ["full"] }
-reqwest = { version = "0.12", features = ["stream", "json", "socks"] }
-serde = { version = "1.0", features = ["derive"] }
-serde_json = "1.0"
-tracing = "0.1"
-tracing-subscriber = { version = "0.3", features = ["env-filter"] }
-anyhow = "1.0"
-http = "1.0"
-futures = "0.3"
-chrono = { version = "0.4", features = ["serde"] }
-uuid = { version = "1.10", features = ["v1", "v4", "fast-rng"] }
-fastrand = "2"
-sha2 = "0.10"
-hex = "0.4"
-crc = "3"           # CRC32C 计算
-bytes = "1"         # 高效的字节缓冲区
-tower-http = { version = "0.6", features = ["cors"] }
-clap = { version = "4.5", features = ["derive"] }
-urlencoding = "2"
-parking_lot = "0.12"  # 高性能同步原语
-subtle = "2.6"        # 常量时间比较（防止时序攻击）
-rust-embed = "8"      # 嵌入静态文件
-mime_guess = "2"      # MIME 类型推断

Dockerfile

@@ -1,42 +0,0 @@
-FROM node:22-alpine AS frontend-builder
-
-WORKDIR /app/admin-ui
-COPY admin-ui/package.json ./
-RUN npm install -g pnpm && pnpm install
-COPY admin-ui ./
-RUN pnpm build
-
-FROM rust:1.85-alpine AS builder
-
-RUN apk add --no-cache musl-dev openssl-dev openssl-libs-static
-
-WORKDIR /app
-COPY Cargo.toml Cargo.lock* ./
-COPY src ./src
-COPY --from=frontend-builder /app/admin-ui/dist /app/admin-ui/dist
-
-RUN cargo build --release
-
-FROM alpine:3.21
-
-RUN apk add --no-cache ca-certificates
-
-# 创建非 root 用户 (HuggingFace Spaces 要求)
-RUN adduser -D -u 1000 appuser
-
-WORKDIR /app
-
-COPY --from=builder /app/target/release/kiro-rs /app/kiro-rs
-COPY entrypoint.sh /app/entrypoint.sh
-
-# 创建配置目录并设置权限
-RUN mkdir -p /app/config && \
-    chown -R appuser:appuser /app && \
-    chmod +x /app/entrypoint.sh
-
-USER appuser
-
-# HuggingFace Spaces 只支持端口 7860
-EXPOSE 7860
-
-ENTRYPOINT ["/app/entrypoint.sh"]

admin-ui/index.html

@@ -1,13 +0,0 @@
-<!DOCTYPE html>
-<html lang="zh-CN">
-  <head>
-    <meta charset="UTF-8" />
-    <link rel="icon" type="image/svg+xml" href="/vite.svg" />
-    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-    <title>Kiro Admin</title>
-  </head>
-  <body>
-    <div id="root"></div>
-    <script type="module" src="/src/main.tsx"></script>
-  </body>
-</html>

admin-ui/package.json

@@ -1,37 +0,0 @@
-{
-  "name": "kiro-admin-ui",
-  "version": "1.0.0",
-  "type": "module",
-  "scripts": {
-    "dev": "vite",
-    "build": "tsc -b && vite build",
-    "preview": "vite preview"
-  },
-  "dependencies": {
-    "react": "^18.3.1",
-    "react-dom": "^18.3.1",
-    "@tanstack/react-query": "^5.60.0",
-    "axios": "^1.7.0",
-    "clsx": "^2.1.1",
-    "tailwind-merge": "^2.5.0",
-    "class-variance-authority": "^0.7.0",
-    "@radix-ui/react-slot": "^1.1.0",
-    "@radix-ui/react-switch": "^1.1.0",
-    "@radix-ui/react-dialog": "^1.1.0",
-    "@radix-ui/react-dropdown-menu": "^2.1.0",
-    "@radix-ui/react-toast": "^1.2.0",
-    "@radix-ui/react-tooltip": "^1.1.0",
-    "lucide-react": "^0.460.0",
-    "sonner": "^1.7.0"
-  },
-  "devDependencies": {
-    "@types/react": "^18.3.12",
-    "@types/react-dom": "^18.3.1",
-    "@vitejs/plugin-react-swc": "^3.7.0",
-    "autoprefixer": "^10.4.20",
-    "postcss": "^8.4.47",
-    "tailwindcss": "^3.4.14",
-    "typescript": "^5.6.3",
-    "vite": "^5.4.0"
-  }
-}

admin-ui/postcss.config.js

@@ -1,6 +0,0 @@
-export default {
-  plugins: {
-    tailwindcss: {},
-    autoprefixer: {},
-  },
-}

admin-ui/src/App.tsx

@@ -1,37 +0,0 @@
-import { useState, useEffect } from 'react'
-import { storage } from '@/lib/storage'
-import { LoginPage } from '@/components/login-page'
-import { Dashboard } from '@/components/dashboard'
-import { Toaster } from '@/components/ui/sonner'
-
-function App() {
-  const [isLoggedIn, setIsLoggedIn] = useState(false)
-
-  useEffect(() => {
-    // 检查是否已经有保存的 API Key
-    if (storage.getApiKey()) {
-      setIsLoggedIn(true)
-    }
-  }, [])
-
-  const handleLogin = () => {
-    setIsLoggedIn(true)
-  }
-
-  const handleLogout = () => {
-    setIsLoggedIn(false)
-  }
-
-  return (
-    <>
-      {isLoggedIn ? (
-        <Dashboard onLogout={handleLogout} />
-      ) : (
-        <LoginPage onLogin={handleLogin} />
-      )}
-      <Toaster position="top-right" />
-    </>
-  )
-}
-
-export default App

admin-ui/src/api/credentials.ts

@@ -1,86 +0,0 @@
-import axios from 'axios'
-import { storage } from '@/lib/storage'
-import type {
-  CredentialsStatusResponse,
-  BalanceResponse,
-  SuccessResponse,
-  SetDisabledRequest,
-  SetPriorityRequest,
-  AddCredentialRequest,
-  AddCredentialResponse,
-} from '@/types/api'
-
-// 创建 axios 实例
-const api = axios.create({
-  baseURL: '/api/admin',
-  headers: {
-    'Content-Type': 'application/json',
-  },
-})
-
-// 请求拦截器添加 API Key
-api.interceptors.request.use((config) => {
-  const apiKey = storage.getApiKey()
-  if (apiKey) {
-    config.headers['x-api-key'] = apiKey
-  }
-  return config
-})
-
-// 获取所有凭据状态
-export async function getCredentials(): Promise<CredentialsStatusResponse> {
-  const { data } = await api.get<CredentialsStatusResponse>('/credentials')
-  return data
-}
-
-// 设置凭据禁用状态
-export async function setCredentialDisabled(
-  id: number,
-  disabled: boolean
-): Promise<SuccessResponse> {
-  const { data } = await api.post<SuccessResponse>(
-    `/credentials/${id}/disabled`,
-    { disabled } as SetDisabledRequest
-  )
-  return data
-}
-
-// 设置凭据优先级
-export async function setCredentialPriority(
-  id: number,
-  priority: number
-): Promise<SuccessResponse> {
-  const { data } = await api.post<SuccessResponse>(
-    `/credentials/${id}/priority`,
-    { priority } as SetPriorityRequest
-  )
-  return data
-}
-
-// 重置失败计数
-export async function resetCredentialFailure(
-  id: number
-): Promise<SuccessResponse> {
-  const { data } = await api.post<SuccessResponse>(`/credentials/${id}/reset`)
-  return data
-}
-
-// 获取凭据余额
-export async function getCredentialBalance(id: number): Promise<BalanceResponse> {
-  const { data } = await api.get<BalanceResponse>(`/credentials/${id}/balance`)
-  return data
-}
-
-// 添加新凭据
-export async function addCredential(
-  req: AddCredentialRequest
-): Promise<AddCredentialResponse> {
-  const { data } = await api.post<AddCredentialResponse>('/credentials', req)
-  return data
-}
-
-// 删除凭据
-export async function deleteCredential(id: number): Promise<SuccessResponse> {
-  const { data } = await api.delete<SuccessResponse>(`/credentials/${id}`)
-  return data
-}

admin-ui/src/components/add-credential-dialog.tsx

@@ -1,186 +0,0 @@
-import { useState } from 'react'
-import { toast } from 'sonner'
-import {
-  Dialog,
-  DialogContent,
-  DialogHeader,
-  DialogTitle,
-  DialogFooter,
-} from '@/components/ui/dialog'
-import { Button } from '@/components/ui/button'
-import { Input } from '@/components/ui/input'
-import { useAddCredential } from '@/hooks/use-credentials'
-import { extractErrorMessage } from '@/lib/utils'
-
-interface AddCredentialDialogProps {
-  open: boolean
-  onOpenChange: (open: boolean) => void
-}
-
-type AuthMethod = 'social' | 'idc' | 'builder-id'
-
-export function AddCredentialDialog({ open, onOpenChange }: AddCredentialDialogProps) {
-  const [refreshToken, setRefreshToken] = useState('')
-  const [authMethod, setAuthMethod] = useState<AuthMethod>('social')
-  const [clientId, setClientId] = useState('')
-  const [clientSecret, setClientSecret] = useState('')
-  const [priority, setPriority] = useState('0')
-
-  const { mutate, isPending } = useAddCredential()
-
-  const resetForm = () => {
-    setRefreshToken('')
-    setAuthMethod('social')
-    setClientId('')
-    setClientSecret('')
-    setPriority('0')
-  }
-
-  const handleSubmit = (e: React.FormEvent) => {
-    e.preventDefault()
-
-    // 验证必填字段
-    if (!refreshToken.trim()) {
-      toast.error('请输入 Refresh Token')
-      return
-    }
-
-    // IdC/Builder-ID 需要额外字段
-    if ((authMethod === 'idc' || authMethod === 'builder-id') &&
-        (!clientId.trim() || !clientSecret.trim())) {
-      toast.error('IdC/Builder-ID 认证需要填写 Client ID 和 Client Secret')
-      return
-    }
-
-    mutate(
-      {
-        refreshToken: refreshToken.trim(),
-        authMethod,
-        clientId: clientId.trim() || undefined,
-        clientSecret: clientSecret.trim() || undefined,
-        priority: parseInt(priority) || 0,
-      },
-      {
-        onSuccess: (data) => {
-          toast.success(data.message)
-          onOpenChange(false)
-          resetForm()
-        },
-        onError: (error: unknown) => {
-          toast.error(`添加失败: ${extractErrorMessage(error)}`)
-        },
-      }
-    )
-  }
-
-  return (
-    <Dialog open={open} onOpenChange={onOpenChange}>
-      <DialogContent className="sm:max-w-lg">
-        <DialogHeader>
-          <DialogTitle>添加凭据</DialogTitle>
-        </DialogHeader>
-
-        <form onSubmit={handleSubmit}>
-          <div className="space-y-4 py-4">
-            {/* Refresh Token */}
-            <div className="space-y-2">
-              <label htmlFor="refreshToken" className="text-sm font-medium">
-                Refresh Token <span className="text-red-500">*</span>
-              </label>
-              <Input
-                id="refreshToken"
-                type="password"
-                placeholder="请输入 Refresh Token"
-                value={refreshToken}
-                onChange={(e) => setRefreshToken(e.target.value)}
-                disabled={isPending}
-              />
-            </div>
-
-            {/* 认证方式 */}
-            <div className="space-y-2">
-              <label htmlFor="authMethod" className="text-sm font-medium">
-                认证方式
-              </label>
-              <select
-                id="authMethod"
-                value={authMethod}
-                onChange={(e) => setAuthMethod(e.target.value as AuthMethod)}
-                disabled={isPending}
-                className="flex h-10 w-full rounded-md border border-input bg-background px-3 py-2 text-sm ring-offset-background focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-ring focus-visible:ring-offset-2 disabled:cursor-not-allowed disabled:opacity-50"
-              >
-                <option value="social">Social</option>
-                <option value="idc">IdC</option>
-                <option value="builder-id">Builder-ID</option>
-              </select>
-            </div>
-
-            {/* IdC/Builder-ID 额外字段 */}
-            {(authMethod === 'idc' || authMethod === 'builder-id') && (
-              <>
-                <div className="space-y-2">
-                  <label htmlFor="clientId" className="text-sm font-medium">
-                    Client ID <span className="text-red-500">*</span>
-                  </label>
-                  <Input
-                    id="clientId"
-                    placeholder="请输入 Client ID"
-                    value={clientId}
-                    onChange={(e) => setClientId(e.target.value)}
-                    disabled={isPending}
-                  />
-                </div>
-                <div className="space-y-2">
-                  <label htmlFor="clientSecret" className="text-sm font-medium">
-                    Client Secret <span className="text-red-500">*</span>
-                  </label>
-                  <Input
-                    id="clientSecret"
-                    type="password"
-                    placeholder="请输入 Client Secret"
-                    value={clientSecret}
-                    onChange={(e) => setClientSecret(e.target.value)}
-                    disabled={isPending}
-                  />
-                </div>
-              </>
-            )}
-
-            {/* 优先级 */}
-            <div className="space-y-2">
-              <label htmlFor="priority" className="text-sm font-medium">
-                优先级
-              </label>
-              <Input
-                id="priority"
-                type="number"
-                min="0"
-                placeholder="数字越小优先级越高"
-                value={priority}
-                onChange={(e) => setPriority(e.target.value)}
-                disabled={isPending}
-              />
-              <p className="text-xs text-muted-foreground">
-                数字越小优先级越高，默认为 0
-              </p>
-            </div>
-          </div>
-
-          <DialogFooter>
-            <Button
-              type="button"
-              variant="outline"
-              onClick={() => onOpenChange(false)}
-              disabled={isPending}
-            >
-              取消
-            </Button>
-            <Button type="submit" disabled={isPending}>
-              {isPending ? '添加中...' : '添加'}
-            </Button>
-          </DialogFooter>
-        </form>
-      </DialogContent>
-    </Dialog>
-  )
-}

admin-ui/src/components/balance-dialog.tsx

@@ -1,104 +0,0 @@
-import {
-  Dialog,
-  DialogContent,
-  DialogHeader,
-  DialogTitle,
-} from '@/components/ui/dialog'
-import { Progress } from '@/components/ui/progress'
-import { useCredentialBalance } from '@/hooks/use-credentials'
-import { parseError } from '@/lib/utils'
-
-interface BalanceDialogProps {
-  credentialId: number | null
-  open: boolean
-  onOpenChange: (open: boolean) => void
-}
-
-export function BalanceDialog({ credentialId, open, onOpenChange }: BalanceDialogProps) {
-  const { data: balance, isLoading, error } = useCredentialBalance(credentialId)
-
-  const formatDate = (timestamp: number | null) => {
-    if (!timestamp) return '未知'
-    return new Date(timestamp * 1000).toLocaleString('zh-CN')
-  }
-
-  const formatNumber = (num: number) => {
-    return num.toLocaleString('zh-CN', { minimumFractionDigits: 2, maximumFractionDigits: 2 })
-  }
-
-  return (
-    <Dialog open={open} onOpenChange={onOpenChange}>
-      <DialogContent className="sm:max-w-md">
-        <DialogHeader>
-          <DialogTitle>
-            凭据 #{credentialId} 余额信息
-          </DialogTitle>
-        </DialogHeader>
-
-        {isLoading && (
-          <div className="flex items-center justify-center py-8">
-            <div className="animate-spin rounded-full h-8 w-8 border-b-2 border-primary"></div>
-          </div>
-        )}
-
-        {error && (() => {
-          const parsed = parseError(error)
-          return (
-            <div className="py-6 space-y-3">
-              <div className="flex items-center justify-center gap-2 text-red-500">
-                <svg className="h-5 w-5" viewBox="0 0 20 20" fill="currentColor">
-                  <path fillRule="evenodd" d="M10 18a8 8 0 100-16 8 8 0 000 16zM8.707 7.293a1 1 0 00-1.414 1.414L8.586 10l-1.293 1.293a1 1 0 101.414 1.414L10 11.414l1.293 1.293a1 1 0 001.414-1.414L11.414 10l1.293-1.293a1 1 0 00-1.414-1.414L10 8.586 8.707 7.293z" clipRule="evenodd" />
-                </svg>
-                <span className="font-medium">{parsed.title}</span>
-              </div>
-              {parsed.detail && (
-                <div className="text-sm text-muted-foreground text-center px-4">
-                  {parsed.detail}
-                </div>
-              )}
-            </div>
-          )
-        })()}
-
-        {balance && (
-          <div className="space-y-4">
-            {/* 订阅类型 */}
-            <div className="text-center">
-              <span className="text-lg font-semibold">
-                {balance.subscriptionTitle || '未知订阅类型'}
-              </span>
-            </div>
-
-            {/* 使用进度 */}
-            <div className="space-y-2">
-              <div className="flex justify-between text-sm">
-                <span>已使用: ${formatNumber(balance.currentUsage)}</span>
-                <span>限额: ${formatNumber(balance.usageLimit)}</span>
-              </div>
-              <Progress value={balance.usagePercentage} />
-              <div className="text-center text-sm text-muted-foreground">
-                {balance.usagePercentage.toFixed(1)}% 已使用
-              </div>
-            </div>
-
-            {/* 详细信息 */}
-            <div className="grid grid-cols-2 gap-4 pt-4 border-t text-sm">
-              <div>
-                <span className="text-muted-foreground">剩余额度：</span>
-                <span className="font-medium text-green-600">
-                  ${formatNumber(balance.remaining)}
-                </span>
-              </div>
-              <div>
-                <span className="text-muted-foreground">下次重置：</span>
-                <span className="font-medium">
-                  {formatDate(balance.nextResetAt)}
-                </span>
-              </div>
-            </div>
-          </div>
-        )}
-      </DialogContent>
-    </Dialog>
-  )
-}

admin-ui/src/components/credential-card.tsx

@@ -1,298 +0,0 @@
-import { useState } from 'react'
-import { toast } from 'sonner'
-import { RefreshCw, ChevronUp, ChevronDown, Wallet, Trash2 } from 'lucide-react'
-import { Card, CardContent, CardHeader, CardTitle } from '@/components/ui/card'
-import { Button } from '@/components/ui/button'
-import { Badge } from '@/components/ui/badge'
-import { Switch } from '@/components/ui/switch'
-import { Input } from '@/components/ui/input'
-import {
-  Dialog,
-  DialogContent,
-  DialogDescription,
-  DialogFooter,
-  DialogHeader,
-  DialogTitle,
-} from '@/components/ui/dialog'
-import type { CredentialStatusItem } from '@/types/api'
-import {
-  useSetDisabled,
-  useSetPriority,
-  useResetFailure,
-  useDeleteCredential,
-} from '@/hooks/use-credentials'
-
-interface CredentialCardProps {
-  credential: CredentialStatusItem
-  onViewBalance: (id: number) => void
-}
-
-export function CredentialCard({ credential, onViewBalance }: CredentialCardProps) {
-  const [editingPriority, setEditingPriority] = useState(false)
-  const [priorityValue, setPriorityValue] = useState(String(credential.priority))
-  const [showDeleteDialog, setShowDeleteDialog] = useState(false)
-
-  const setDisabled = useSetDisabled()
-  const setPriority = useSetPriority()
-  const resetFailure = useResetFailure()
-  const deleteCredential = useDeleteCredential()
-
-  const handleToggleDisabled = () => {
-    setDisabled.mutate(
-      { id: credential.id, disabled: !credential.disabled },
-      {
-        onSuccess: (res) => {
-          toast.success(res.message)
-        },
-        onError: (err) => {
-          toast.error('操作失败: ' + (err as Error).message)
-        },
-      }
-    )
-  }
-
-  const handlePriorityChange = () => {
-    const newPriority = parseInt(priorityValue, 10)
-    if (isNaN(newPriority) || newPriority < 0) {
-      toast.error('优先级必须是非负整数')
-      return
-    }
-    setPriority.mutate(
-      { id: credential.id, priority: newPriority },
-      {
-        onSuccess: (res) => {
-          toast.success(res.message)
-          setEditingPriority(false)
-        },
-        onError: (err) => {
-          toast.error('操作失败: ' + (err as Error).message)
-        },
-      }
-    )
-  }
-
-  const handleReset = () => {
-    resetFailure.mutate(credential.id, {
-      onSuccess: (res) => {
-        toast.success(res.message)
-      },
-      onError: (err) => {
-        toast.error('操作失败: ' + (err as Error).message)
-      },
-    })
-  }
-
-  const handleDelete = () => {
-    deleteCredential.mutate(credential.id, {
-      onSuccess: (res) => {
-        toast.success(res.message)
-        setShowDeleteDialog(false)
-      },
-      onError: (err) => {
-        toast.error('删除失败: ' + (err as Error).message)
-      },
-    })
-  }
-
-  const formatExpiry = (expiresAt: string | null) => {
-    if (!expiresAt) return '未知'
-    const date = new Date(expiresAt)
-    const now = new Date()
-    const diff = date.getTime() - now.getTime()
-    if (diff < 0) return '已过期'
-    const minutes = Math.floor(diff / 60000)
-    if (minutes < 60) return `${minutes} 分钟`
-    const hours = Math.floor(minutes / 60)
-    if (hours < 24) return `${hours} 小时`
-    return `${Math.floor(hours / 24)} 天`
-  }
-
-  return (
-    <>
-      <Card className={credential.isCurrent ? 'ring-2 ring-primary' : ''}>
-        <CardHeader className="pb-2">
-          <div className="flex items-center justify-between">
-            <CardTitle className="text-lg flex items-center gap-2">
-              凭据 #{credential.id}
-              {credential.isCurrent && (
-                <Badge variant="success">当前</Badge>
-              )}
-              {credential.disabled && (
-                <Badge variant="destructive">已禁用</Badge>
-              )}
-            </CardTitle>
-            <div className="flex items-center gap-2">
-              <span className="text-sm text-muted-foreground">启用</span>
-              <Switch
-                checked={!credential.disabled}
-                onCheckedChange={handleToggleDisabled}
-                disabled={setDisabled.isPending}
-              />
-            </div>
-          </div>
-        </CardHeader>
-        <CardContent className="space-y-4">
-          {/* 信息网格 */}
-          <div className="grid grid-cols-2 gap-4 text-sm">
-            <div>
-              <span className="text-muted-foreground">优先级：</span>
-              {editingPriority ? (
-                <div className="inline-flex items-center gap-1 ml-1">
-                  <Input
-                    type="number"
-                    value={priorityValue}
-                    onChange={(e) => setPriorityValue(e.target.value)}
-                    className="w-16 h-7 text-sm"
-                    min="0"
-                  />
-                  <Button
-                    size="sm"
-                    variant="ghost"
-                    className="h-7 w-7 p-0"
-                    onClick={handlePriorityChange}
-                    disabled={setPriority.isPending}
-                  >
-                    ✓
-                  </Button>
-                  <Button
-                    size="sm"
-                    variant="ghost"
-                    className="h-7 w-7 p-0"
-                    onClick={() => {
-                      setEditingPriority(false)
-                      setPriorityValue(String(credential.priority))
-                    }}
-                  >
-                    ✕
-                  </Button>
-                </div>
-              ) : (
-                <span
-                  className="font-medium cursor-pointer hover:underline ml-1"
-                  onClick={() => setEditingPriority(true)}
-                >
-                  {credential.priority}
-                  <span className="text-xs text-muted-foreground ml-1">(点击编辑)</span>
-                </span>
-              )}
-            </div>
-            <div>
-              <span className="text-muted-foreground">失败次数：</span>
-              <span className={credential.failureCount > 0 ? 'text-red-500 font-medium' : ''}>
-                {credential.failureCount}
-              </span>
-            </div>
-            <div>
-              <span className="text-muted-foreground">认证方式：</span>
-              <span className="font-medium">{credential.authMethod || '未知'}</span>
-            </div>
-            <div>
-              <span className="text-muted-foreground">Token 有效期：</span>
-              <span className="font-medium">{formatExpiry(credential.expiresAt)}</span>
-            </div>
-            {credential.hasProfileArn && (
-              <div className="col-span-2">
-                <Badge variant="secondary">有 Profile ARN</Badge>
-              </div>
-            )}
-          </div>
-
-          {/* 操作按钮 */}
-          <div className="flex flex-wrap gap-2 pt-2 border-t">
-            <Button
-              size="sm"
-              variant="outline"
-              onClick={handleReset}
-              disabled={resetFailure.isPending || credential.failureCount === 0}
-            >
-              <RefreshCw className="h-4 w-4 mr-1" />
-              重置失败
-            </Button>
-            <Button
-              size="sm"
-              variant="outline"
-              onClick={() => {
-                const newPriority = Math.max(0, credential.priority - 1)
-                setPriority.mutate(
-                  { id: credential.id, priority: newPriority },
-                  {
-                    onSuccess: (res) => toast.success(res.message),
-                    onError: (err) => toast.error('操作失败: ' + (err as Error).message),
-                  }
-                )
-              }}
-              disabled={setPriority.isPending || credential.priority === 0}
-            >
-              <ChevronUp className="h-4 w-4 mr-1" />
-              提高优先级
-            </Button>
-            <Button
-              size="sm"
-              variant="outline"
-              onClick={() => {
-                const newPriority = credential.priority + 1
-                setPriority.mutate(
-                  { id: credential.id, priority: newPriority },
-                  {
-                    onSuccess: (res) => toast.success(res.message),
-                    onError: (err) => toast.error('操作失败: ' + (err as Error).message),
-                  }
-                )
-              }}
-              disabled={setPriority.isPending}
-            >
-              <ChevronDown className="h-4 w-4 mr-1" />
-              降低优先级
-            </Button>
-            <Button
-              size="sm"
-              variant="default"
-              onClick={() => onViewBalance(credential.id)}
-            >
-              <Wallet className="h-4 w-4 mr-1" />
-              查看余额
-            </Button>
-            <Button
-              size="sm"
-              variant="destructive"
-              onClick={() => setShowDeleteDialog(true)}
-              disabled={!credential.disabled}
-              title={!credential.disabled ? '需要先禁用凭据才能删除' : undefined}
-            >
-              <Trash2 className="h-4 w-4 mr-1" />
-              删除
-            </Button>
-          </div>
-        </CardContent>
-      </Card>
-
-      {/* 删除确认对话框 */}
-      <Dialog open={showDeleteDialog} onOpenChange={setShowDeleteDialog}>
-        <DialogContent>
-          <DialogHeader>
-            <DialogTitle>确认删除凭据</DialogTitle>
-            <DialogDescription>
-              您确定要删除凭据 #{credential.id} 吗？此操作无法撤销。
-            </DialogDescription>
-          </DialogHeader>
-          <DialogFooter>
-            <Button
-              variant="outline"
-              onClick={() => setShowDeleteDialog(false)}
-              disabled={deleteCredential.isPending}
-            >
-              取消
-            </Button>
-            <Button
-              variant="destructive"
-              onClick={handleDelete}
-              disabled={deleteCredential.isPending}
-            >
-              确认删除
-            </Button>
-          </DialogFooter>
-        </DialogContent>
-      </Dialog>
-    </>
-  )
-}

admin-ui/src/components/dashboard.tsx

@@ -1,186 +0,0 @@
-import { useState } from 'react'
-import { RefreshCw, LogOut, Moon, Sun, Server, Plus } from 'lucide-react'
-import { useQueryClient } from '@tanstack/react-query'
-import { toast } from 'sonner'
-import { storage } from '@/lib/storage'
-import { Card, CardContent, CardHeader, CardTitle } from '@/components/ui/card'
-import { Button } from '@/components/ui/button'
-import { Badge } from '@/components/ui/badge'
-import { CredentialCard } from '@/components/credential-card'
-import { BalanceDialog } from '@/components/balance-dialog'
-import { AddCredentialDialog } from '@/components/add-credential-dialog'
-import { useCredentials } from '@/hooks/use-credentials'
-
-interface DashboardProps {
-  onLogout: () => void
-}
-
-export function Dashboard({ onLogout }: DashboardProps) {
-  const [selectedCredentialId, setSelectedCredentialId] = useState<number | null>(null)
-  const [balanceDialogOpen, setBalanceDialogOpen] = useState(false)
-  const [addDialogOpen, setAddDialogOpen] = useState(false)
-  const [darkMode, setDarkMode] = useState(() => {
-    if (typeof window !== 'undefined') {
-      return document.documentElement.classList.contains('dark')
-    }
-    return false
-  })
-
-  const queryClient = useQueryClient()
-  const { data, isLoading, error, refetch } = useCredentials()
-
-  const toggleDarkMode = () => {
-    setDarkMode(!darkMode)
-    document.documentElement.classList.toggle('dark')
-  }
-
-  const handleViewBalance = (id: number) => {
-    setSelectedCredentialId(id)
-    setBalanceDialogOpen(true)
-  }
-
-  const handleRefresh = () => {
-    refetch()
-    toast.success('已刷新凭据列表')
-  }
-
-  const handleLogout = () => {
-    storage.removeApiKey()
-    queryClient.clear()
-    onLogout()
-  }
-
-  if (isLoading) {
-    return (
-      <div className="min-h-screen flex items-center justify-center bg-background">
-        <div className="text-center">
-          <div className="animate-spin rounded-full h-12 w-12 border-b-2 border-primary mx-auto mb-4"></div>
-          <p className="text-muted-foreground">加载中...</p>
-        </div>
-      </div>
-    )
-  }
-
-  if (error) {
-    return (
-      <div className="min-h-screen flex items-center justify-center bg-background p-4">
-        <Card className="w-full max-w-md">
-          <CardContent className="pt-6 text-center">
-            <div className="text-red-500 mb-4">加载失败</div>
-            <p className="text-muted-foreground mb-4">{(error as Error).message}</p>
-            <div className="space-x-2">
-              <Button onClick={() => refetch()}>重试</Button>
-              <Button variant="outline" onClick={handleLogout}>重新登录</Button>
-            </div>
-          </CardContent>
-        </Card>
-      </div>
-    )
-  }
-
-  return (
-    <div className="min-h-screen bg-background">
-      {/* 顶部导航 */}
-      <header className="sticky top-0 z-50 w-full border-b bg-background/95 backdrop-blur supports-[backdrop-filter]:bg-background/60">
-        <div className="container flex h-14 items-center justify-between px-4 md:px-8">
-          <div className="flex items-center gap-2">
-            <Server className="h-5 w-5" />
-            <span className="font-semibold">Kiro Admin</span>
-          </div>
-          <div className="flex items-center gap-2">
-            <Button variant="ghost" size="icon" onClick={toggleDarkMode}>
-              {darkMode ? <Sun className="h-5 w-5" /> : <Moon className="h-5 w-5" />}
-            </Button>
-            <Button variant="ghost" size="icon" onClick={handleRefresh}>
-              <RefreshCw className="h-5 w-5" />
-            </Button>
-            <Button variant="ghost" size="icon" onClick={handleLogout}>
-              <LogOut className="h-5 w-5" />
-            </Button>
-          </div>
-        </div>
-      </header>
-
-      {/* 主内容 */}
-      <main className="container px-4 md:px-8 py-6">
-        {/* 统计卡片 */}
-        <div className="grid gap-4 md:grid-cols-3 mb-6">
-          <Card>
-            <CardHeader className="pb-2">
-              <CardTitle className="text-sm font-medium text-muted-foreground">
-                凭据总数
-              </CardTitle>
-            </CardHeader>
-            <CardContent>
-              <div className="text-2xl font-bold">{data?.total || 0}</div>
-            </CardContent>
-          </Card>
-          <Card>
-            <CardHeader className="pb-2">
-              <CardTitle className="text-sm font-medium text-muted-foreground">
-                可用凭据
-              </CardTitle>
-            </CardHeader>
-            <CardContent>
-              <div className="text-2xl font-bold text-green-600">{data?.available || 0}</div>
-            </CardContent>
-          </Card>
-          <Card>
-            <CardHeader className="pb-2">
-              <CardTitle className="text-sm font-medium text-muted-foreground">
-                当前活跃
-              </CardTitle>
-            </CardHeader>
-            <CardContent>
-              <div className="text-2xl font-bold flex items-center gap-2">
-                #{data?.currentId || '-'}
-                <Badge variant="success">活跃</Badge>
-              </div>
-            </CardContent>
-          </Card>
-        </div>
-
-        {/* 凭据列表 */}
-        <div className="space-y-4">
-          <div className="flex items-center justify-between">
-            <h2 className="text-xl font-semibold">凭据管理</h2>
-            <Button onClick={() => setAddDialogOpen(true)} size="sm">
-              <Plus className="h-4 w-4 mr-2" />
-              添加凭据
-            </Button>
-          </div>
-          {data?.credentials.length === 0 ? (
-            <Card>
-              <CardContent className="py-8 text-center text-muted-foreground">
-                暂无凭据
-              </CardContent>
-            </Card>
-          ) : (
-            <div className="grid gap-4 md:grid-cols-2 lg:grid-cols-3">
-              {data?.credentials.map((credential) => (
-                <CredentialCard
-                  key={credential.id}
-                  credential={credential}
-                  onViewBalance={handleViewBalance}
-                />
-              ))}
-            </div>
-          )}
-        </div>
-      </main>
-
-      {/* 余额对话框 */}
-      <BalanceDialog
-        credentialId={selectedCredentialId}
-        open={balanceDialogOpen}
-        onOpenChange={setBalanceDialogOpen}
-      />
-
-      {/* 添加凭据对话框 */}
-      <AddCredentialDialog
-        open={addDialogOpen}
-        onOpenChange={setAddDialogOpen}
-      />
-    </div>
-  )
-}

admin-ui/src/components/login-page.tsx

@@ -1,62 +0,0 @@
-import { useState, useEffect } from 'react'
-import { KeyRound } from 'lucide-react'
-import { storage } from '@/lib/storage'
-import { Card, CardContent, CardDescription, CardHeader, CardTitle } from '@/components/ui/card'
-import { Input } from '@/components/ui/input'
-import { Button } from '@/components/ui/button'
-
-interface LoginPageProps {
-  onLogin: (apiKey: string) => void
-}
-
-export function LoginPage({ onLogin }: LoginPageProps) {
-  const [apiKey, setApiKey] = useState('')
-
-  useEffect(() => {
-    // 从 storage 读取保存的 API Key
-    const savedKey = storage.getApiKey()
-    if (savedKey) {
-      setApiKey(savedKey)
-    }
-  }, [])
-
-  const handleSubmit = (e: React.FormEvent) => {
-    e.preventDefault()
-    if (apiKey.trim()) {
-      storage.setApiKey(apiKey.trim())
-      onLogin(apiKey.trim())
-    }
-  }
-
-  return (
-    <div className="min-h-screen flex items-center justify-center bg-background p-4">
-      <Card className="w-full max-w-md">
-        <CardHeader className="text-center">
-          <div className="mx-auto mb-4 flex h-12 w-12 items-center justify-center rounded-full bg-primary/10">
-            <KeyRound className="h-6 w-6 text-primary" />
-          </div>
-          <CardTitle className="text-2xl">Kiro Admin</CardTitle>
-          <CardDescription>
-            请输入 Admin API Key 以访问管理面板
-          </CardDescription>
-        </CardHeader>
-        <CardContent>
-          <form onSubmit={handleSubmit} className="space-y-4">
-            <div className="space-y-2">
-              <Input
-                type="password"
-                placeholder="Admin API Key"
-                value={apiKey}
-                onChange={(e) => setApiKey(e.target.value)}
-                className="text-center"
-              />
-            </div>
-            <Button type="submit" className="w-full" disabled={!apiKey.trim()}>
-              登录
-            </Button>
-          </form>
-        </CardContent>
-      </Card>
-    </div>
-  )
-}

admin-ui/src/components/ui/badge.tsx

@@ -1,39 +0,0 @@
-import * as React from 'react'
-import { cva, type VariantProps } from 'class-variance-authority'
-import { cn } from '@/lib/utils'
-
-const badgeVariants = cva(
-  'inline-flex items-center rounded-full border px-2.5 py-0.5 text-xs font-semibold transition-colors focus:outline-none focus:ring-2 focus:ring-ring focus:ring-offset-2',
-  {
-    variants: {
-      variant: {
-        default:
-          'border-transparent bg-primary text-primary-foreground hover:bg-primary/80',
-        secondary:
-          'border-transparent bg-secondary text-secondary-foreground hover:bg-secondary/80',
-        destructive:
-          'border-transparent bg-destructive text-destructive-foreground hover:bg-destructive/80',
-        outline: 'text-foreground',
-        success:
-          'border-transparent bg-green-500 text-white hover:bg-green-500/80',
-        warning:
-          'border-transparent bg-yellow-500 text-white hover:bg-yellow-500/80',
-      },
-    },
-    defaultVariants: {
-      variant: 'default',
-    },
-  }
-)
-
-export interface BadgeProps
-  extends React.HTMLAttributes<HTMLDivElement>,
-    VariantProps<typeof badgeVariants> {}
-
-function Badge({ className, variant, ...props }: BadgeProps) {
-  return (
-    <div className={cn(badgeVariants({ variant }), className)} {...props} />
-  )
-}
-
-export { Badge, badgeVariants }

admin-ui/src/components/ui/button.tsx

@@ -1,55 +0,0 @@
-import * as React from 'react'
-import { Slot } from '@radix-ui/react-slot'
-import { cva, type VariantProps } from 'class-variance-authority'
-import { cn } from '@/lib/utils'
-
-const buttonVariants = cva(
-  'inline-flex items-center justify-center gap-2 whitespace-nowrap rounded-md text-sm font-medium ring-offset-background transition-colors focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-ring focus-visible:ring-offset-2 disabled:pointer-events-none disabled:opacity-50 [&_svg]:pointer-events-none [&_svg]:size-4 [&_svg]:shrink-0',
-  {
-    variants: {
-      variant: {
-        default: 'bg-primary text-primary-foreground hover:bg-primary/90',
-        destructive:
-          'bg-destructive text-destructive-foreground hover:bg-destructive/90',
-        outline:
-          'border border-input bg-background hover:bg-accent hover:text-accent-foreground',
-        secondary:
-          'bg-secondary text-secondary-foreground hover:bg-secondary/80',
-        ghost: 'hover:bg-accent hover:text-accent-foreground',
-        link: 'text-primary underline-offset-4 hover:underline',
-      },
-      size: {
-        default: 'h-10 px-4 py-2',
-        sm: 'h-9 rounded-md px-3',
-        lg: 'h-11 rounded-md px-8',
-        icon: 'h-10 w-10',
-      },
-    },
-    defaultVariants: {
-      variant: 'default',
-      size: 'default',
-    },
-  }
-)
-
-export interface ButtonProps
-  extends React.ButtonHTMLAttributes<HTMLButtonElement>,
-    VariantProps<typeof buttonVariants> {
-  asChild?: boolean
-}
-
-const Button = React.forwardRef<HTMLButtonElement, ButtonProps>(
-  ({ className, variant, size, asChild = false, ...props }, ref) => {
-    const Comp = asChild ? Slot : 'button'
-    return (
-      <Comp
-        className={cn(buttonVariants({ variant, size, className }))}
-        ref={ref}
-        {...props}
-      />
-    )
-  }
-)
-Button.displayName = 'Button'
-
-export { Button, buttonVariants }

admin-ui/src/components/ui/card.tsx

@@ -1,78 +0,0 @@
-import * as React from 'react'
-import { cn } from '@/lib/utils'
-
-const Card = React.forwardRef<
-  HTMLDivElement,
-  React.HTMLAttributes<HTMLDivElement>
->(({ className, ...props }, ref) => (
-  <div
-    ref={ref}
-    className={cn(
-      'rounded-lg border bg-card text-card-foreground shadow-sm',
-      className
-    )}
-    {...props}
-  />
-))
-Card.displayName = 'Card'
-
-const CardHeader = React.forwardRef<
-  HTMLDivElement,
-  React.HTMLAttributes<HTMLDivElement>
->(({ className, ...props }, ref) => (
-  <div
-    ref={ref}
-    className={cn('flex flex-col space-y-1.5 p-6', className)}
-    {...props}
-  />
-))
-CardHeader.displayName = 'CardHeader'
-
-const CardTitle = React.forwardRef<
-  HTMLParagraphElement,
-  React.HTMLAttributes<HTMLHeadingElement>
->(({ className, ...props }, ref) => (
-  <h3
-    ref={ref}
-    className={cn(
-      'text-2xl font-semibold leading-none tracking-tight',
-      className
-    )}
-    {...props}
-  />
-))
-CardTitle.displayName = 'CardTitle'
-
-const CardDescription = React.forwardRef<
-  HTMLParagraphElement,
-  React.HTMLAttributes<HTMLParagraphElement>
->(({ className, ...props }, ref) => (
-  <p
-    ref={ref}
-    className={cn('text-sm text-muted-foreground', className)}
-    {...props}
-  />
-))
-CardDescription.displayName = 'CardDescription'
-
-const CardContent = React.forwardRef<
-  HTMLDivElement,
-  React.HTMLAttributes<HTMLDivElement>
->(({ className, ...props }, ref) => (
-  <div ref={ref} className={cn('p-6 pt-0', className)} {...props} />
-))
-CardContent.displayName = 'CardContent'
-
-const CardFooter = React.forwardRef<
-  HTMLDivElement,
-  React.HTMLAttributes<HTMLDivElement>
->(({ className, ...props }, ref) => (
-  <div
-    ref={ref}
-    className={cn('flex items-center p-6 pt-0', className)}
-    {...props}
-  />
-))
-CardFooter.displayName = 'CardFooter'
-
-export { Card, CardHeader, CardFooter, CardTitle, CardDescription, CardContent }

admin-ui/src/components/ui/dialog.tsx

@@ -1,119 +0,0 @@
-import * as React from 'react'
-import * as DialogPrimitive from '@radix-ui/react-dialog'
-import { X } from 'lucide-react'
-import { cn } from '@/lib/utils'
-
-const Dialog = DialogPrimitive.Root
-
-const DialogTrigger = DialogPrimitive.Trigger
-
-const DialogPortal = DialogPrimitive.Portal
-
-const DialogClose = DialogPrimitive.Close
-
-const DialogOverlay = React.forwardRef<
-  React.ElementRef<typeof DialogPrimitive.Overlay>,
-  React.ComponentPropsWithoutRef<typeof DialogPrimitive.Overlay>
->(({ className, ...props }, ref) => (
-  <DialogPrimitive.Overlay
-    ref={ref}
-    className={cn(
-      'fixed inset-0 z-50 bg-black/80 data-[state=open]:animate-in data-[state=closed]:animate-out data-[state=closed]:fade-out-0 data-[state=open]:fade-in-0',
-      className
-    )}
-    {...props}
-  />
-))
-DialogOverlay.displayName = DialogPrimitive.Overlay.displayName
-
-const DialogContent = React.forwardRef<
-  React.ElementRef<typeof DialogPrimitive.Content>,
-  React.ComponentPropsWithoutRef<typeof DialogPrimitive.Content>
->(({ className, children, ...props }, ref) => (
-  <DialogPortal>
-    <DialogOverlay />
-    <DialogPrimitive.Content
-      ref={ref}
-      className={cn(
-        'fixed left-[50%] top-[50%] z-50 grid w-full max-w-lg translate-x-[-50%] translate-y-[-50%] gap-4 border bg-background p-6 shadow-lg duration-200 data-[state=open]:animate-in data-[state=closed]:animate-out data-[state=closed]:fade-out-0 data-[state=open]:fade-in-0 data-[state=closed]:zoom-out-95 data-[state=open]:zoom-in-95 data-[state=closed]:slide-out-to-left-1/2 data-[state=closed]:slide-out-to-top-[48%] data-[state=open]:slide-in-from-left-1/2 data-[state=open]:slide-in-from-top-[48%] sm:rounded-lg',
-        className
-      )}
-      {...props}
-    >
-      {children}
-      <DialogPrimitive.Close className="absolute right-4 top-4 rounded-sm opacity-70 ring-offset-background transition-opacity hover:opacity-100 focus:outline-none focus:ring-2 focus:ring-ring focus:ring-offset-2 disabled:pointer-events-none data-[state=open]:bg-accent data-[state=open]:text-muted-foreground">
-        <X className="h-4 w-4" />
-        <span className="sr-only">关闭</span>
-      </DialogPrimitive.Close>
-    </DialogPrimitive.Content>
-  </DialogPortal>
-))
-DialogContent.displayName = DialogPrimitive.Content.displayName
-
-const DialogHeader = ({
-  className,
-  ...props
-}: React.HTMLAttributes<HTMLDivElement>) => (
-  <div
-    className={cn(
-      'flex flex-col space-y-1.5 text-center sm:text-left',
-      className
-    )}
-    {...props}
-  />
-)
-DialogHeader.displayName = 'DialogHeader'
-
-const DialogFooter = ({
-  className,
-  ...props
-}: React.HTMLAttributes<HTMLDivElement>) => (
-  <div
-    className={cn(
-      'flex flex-col-reverse sm:flex-row sm:justify-end sm:space-x-2',
-      className
-    )}
-    {...props}
-  />
-)
-DialogFooter.displayName = 'DialogFooter'
-
-const DialogTitle = React.forwardRef<
-  React.ElementRef<typeof DialogPrimitive.Title>,
-  React.ComponentPropsWithoutRef<typeof DialogPrimitive.Title>
->(({ className, ...props }, ref) => (
-  <DialogPrimitive.Title
-    ref={ref}
-    className={cn(
-      'text-lg font-semibold leading-none tracking-tight',
-      className
-    )}
-    {...props}
-  />
-))
-DialogTitle.displayName = DialogPrimitive.Title.displayName
-
-const DialogDescription = React.forwardRef<
-  React.ElementRef<typeof DialogPrimitive.Description>,
-  React.ComponentPropsWithoutRef<typeof DialogPrimitive.Description>
->(({ className, ...props }, ref) => (
-  <DialogPrimitive.Description
-    ref={ref}
-    className={cn('text-sm text-muted-foreground', className)}
-    {...props}
-  />
-))
-DialogDescription.displayName = DialogPrimitive.Description.displayName
-
-export {
-  Dialog,
-  DialogPortal,
-  DialogOverlay,
-  DialogClose,
-  DialogTrigger,
-  DialogContent,
-  DialogHeader,
-  DialogFooter,
-  DialogTitle,
-  DialogDescription,
-}

admin-ui/src/components/ui/input.tsx

@@ -1,24 +0,0 @@
-import * as React from 'react'
-import { cn } from '@/lib/utils'
-
-export interface InputProps
-  extends React.InputHTMLAttributes<HTMLInputElement> {}
-
-const Input = React.forwardRef<HTMLInputElement, InputProps>(
-  ({ className, type, ...props }, ref) => {
-    return (
-      <input
-        type={type}
-        className={cn(
-          'flex h-10 w-full rounded-md border border-input bg-background px-3 py-2 text-sm ring-offset-background file:border-0 file:bg-transparent file:text-sm file:font-medium file:text-foreground placeholder:text-muted-foreground focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-ring focus-visible:ring-offset-2 disabled:cursor-not-allowed disabled:opacity-50',
-          className
-        )}
-        ref={ref}
-        {...props}
-      />
-    )
-  }
-)
-Input.displayName = 'Input'
-
-export { Input }

admin-ui/src/components/ui/progress.tsx

@@ -1,35 +0,0 @@
-import * as React from 'react'
-import { cn } from '@/lib/utils'
-
-interface ProgressProps extends React.HTMLAttributes<HTMLDivElement> {
-  value?: number
-  max?: number
-}
-
-const Progress = React.forwardRef<HTMLDivElement, ProgressProps>(
-  ({ className, value = 0, max = 100, ...props }, ref) => {
-    const percentage = Math.min(Math.max((value / max) * 100, 0), 100)
-
-    return (
-      <div
-        ref={ref}
-        className={cn(
-          'relative h-4 w-full overflow-hidden rounded-full bg-secondary',
-          className
-        )}
-        {...props}
-      >
-        <div
-          className={cn(
-            'h-full transition-all',
-            percentage > 80 ? 'bg-red-500' : percentage > 60 ? 'bg-yellow-500' : 'bg-green-500'
-          )}
-          style={{ width: `${percentage}%` }}
-        />
-      </div>
-    )
-  }
-)
-Progress.displayName = 'Progress'
-
-export { Progress }

admin-ui/src/components/ui/sonner.tsx

@@ -1,25 +0,0 @@
-import { Toaster as Sonner } from 'sonner'
-
-type ToasterProps = React.ComponentProps<typeof Sonner>
-
-const Toaster = ({ ...props }: ToasterProps) => {
-  return (
-    <Sonner
-      className="toaster group"
-      toastOptions={{
-        classNames: {
-          toast:
-            'group toast group-[.toaster]:bg-background group-[.toaster]:text-foreground group-[.toaster]:border-border group-[.toaster]:shadow-lg',
-          description: 'group-[.toast]:text-muted-foreground',
-          actionButton:
-            'group-[.toast]:bg-primary group-[.toast]:text-primary-foreground',
-          cancelButton:
-            'group-[.toast]:bg-muted group-[.toast]:text-muted-foreground',
-        },
-      }}
-      {...props}
-    />
-  )
-}
-
-export { Toaster }

admin-ui/src/components/ui/switch.tsx

@@ -1,26 +0,0 @@
-import * as React from 'react'
-import * as SwitchPrimitives from '@radix-ui/react-switch'
-import { cn } from '@/lib/utils'
-
-const Switch = React.forwardRef<
-  React.ElementRef<typeof SwitchPrimitives.Root>,
-  React.ComponentPropsWithoutRef<typeof SwitchPrimitives.Root>
->(({ className, ...props }, ref) => (
-  <SwitchPrimitives.Root
-    className={cn(
-      'peer inline-flex h-6 w-11 shrink-0 cursor-pointer items-center rounded-full border-2 border-transparent transition-colors focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-ring focus-visible:ring-offset-2 focus-visible:ring-offset-background disabled:cursor-not-allowed disabled:opacity-50 data-[state=checked]:bg-primary data-[state=unchecked]:bg-input',
-      className
-    )}
-    {...props}
-    ref={ref}
-  >
-    <SwitchPrimitives.Thumb
-      className={cn(
-        'pointer-events-none block h-5 w-5 rounded-full bg-background shadow-lg ring-0 transition-transform data-[state=checked]:translate-x-5 data-[state=unchecked]:translate-x-0'
-      )}
-    />
-  </SwitchPrimitives.Root>
-))
-Switch.displayName = SwitchPrimitives.Root.displayName
-
-export { Switch }

admin-ui/src/hooks/use-credentials.ts

@@ -1,87 +0,0 @@
-import { useQuery, useMutation, useQueryClient } from '@tanstack/react-query'
-import {
-  getCredentials,
-  setCredentialDisabled,
-  setCredentialPriority,
-  resetCredentialFailure,
-  getCredentialBalance,
-  addCredential,
-  deleteCredential,
-} from '@/api/credentials'
-import type { AddCredentialRequest } from '@/types/api'
-
-// 查询凭据列表
-export function useCredentials() {
-  return useQuery({
-    queryKey: ['credentials'],
-    queryFn: getCredentials,
-    refetchInterval: 30000, // 每 30 秒刷新一次
-  })
-}
-
-// 查询凭据余额
-export function useCredentialBalance(id: number | null) {
-  return useQuery({
-    queryKey: ['credential-balance', id],
-    queryFn: () => getCredentialBalance(id!),
-    enabled: id !== null,
-    retry: false, // 余额查询失败时不重试（避免重复请求被封禁的账号）
-  })
-}
-
-// 设置禁用状态
-export function useSetDisabled() {
-  const queryClient = useQueryClient()
-  return useMutation({
-    mutationFn: ({ id, disabled }: { id: number; disabled: boolean }) =>
-      setCredentialDisabled(id, disabled),
-    onSuccess: () => {
-      queryClient.invalidateQueries({ queryKey: ['credentials'] })
-    },
-  })
-}
-
-// 设置优先级
-export function useSetPriority() {
-  const queryClient = useQueryClient()
-  return useMutation({
-    mutationFn: ({ id, priority }: { id: number; priority: number }) =>
-      setCredentialPriority(id, priority),
-    onSuccess: () => {
-      queryClient.invalidateQueries({ queryKey: ['credentials'] })
-    },
-  })
-}
-
-// 重置失败计数
-export function useResetFailure() {
-  const queryClient = useQueryClient()
-  return useMutation({
-    mutationFn: (id: number) => resetCredentialFailure(id),
-    onSuccess: () => {
-      queryClient.invalidateQueries({ queryKey: ['credentials'] })
-    },
-  })
-}
-
-// 添加新凭据
-export function useAddCredential() {
-  const queryClient = useQueryClient()
-  return useMutation({
-    mutationFn: (req: AddCredentialRequest) => addCredential(req),
-    onSuccess: () => {
-      queryClient.invalidateQueries({ queryKey: ['credentials'] })
-    },
-  })
-}
-
-// 删除凭据
-export function useDeleteCredential() {
-  const queryClient = useQueryClient()
-  return useMutation({
-    mutationFn: (id: number) => deleteCredential(id),
-    onSuccess: () => {
-      queryClient.invalidateQueries({ queryKey: ['credentials'] })
-    },
-  })
-}

admin-ui/src/index.css

@@ -1,60 +0,0 @@
-@tailwind base;
-@tailwind components;
-@tailwind utilities;
-
-@layer base {
-  :root {
-    --background: 0 0% 100%;
-    --foreground: 222.2 84% 4.9%;
-    --card: 0 0% 100%;
-    --card-foreground: 222.2 84% 4.9%;
-    --popover: 0 0% 100%;
-    --popover-foreground: 222.2 84% 4.9%;
-    --primary: 222.2 47.4% 11.2%;
-    --primary-foreground: 210 40% 98%;
-    --secondary: 210 40% 96.1%;
-    --secondary-foreground: 222.2 47.4% 11.2%;
-    --muted: 210 40% 96.1%;
-    --muted-foreground: 215.4 16.3% 46.9%;
-    --accent: 210 40% 96.1%;
-    --accent-foreground: 222.2 47.4% 11.2%;
-    --destructive: 0 84.2% 60.2%;
-    --destructive-foreground: 210 40% 98%;
-    --border: 214.3 31.8% 91.4%;
-    --input: 214.3 31.8% 91.4%;
-    --ring: 222.2 84% 4.9%;
-    --radius: 0.5rem;
-  }
-
-  .dark {
-    --background: 222.2 84% 4.9%;
-    --foreground: 210 40% 98%;
-    --card: 222.2 84% 4.9%;
-    --card-foreground: 210 40% 98%;
-    --popover: 222.2 84% 4.9%;
-    --popover-foreground: 210 40% 98%;
-    --primary: 210 40% 98%;
-    --primary-foreground: 222.2 47.4% 11.2%;
-    --secondary: 217.2 32.6% 17.5%;
-    --secondary-foreground: 210 40% 98%;
-    --muted: 217.2 32.6% 17.5%;
-    --muted-foreground: 215 20.2% 65.1%;
-    --accent: 217.2 32.6% 17.5%;
-    --accent-foreground: 210 40% 98%;
-    --destructive: 0 62.8% 30.6%;
-    --destructive-foreground: 210 40% 98%;
-    --border: 217.2 32.6% 17.5%;
-    --input: 217.2 32.6% 17.5%;
-    --ring: 212.7 26.8% 83.9%;
-  }
-}
-
-@layer base {
-  * {
-    @apply border-border;
-  }
-  body {
-    @apply bg-background text-foreground;
-    font-feature-settings: "rlig" 1, "calt" 1;
-  }
-}

admin-ui/src/lib/storage.ts

@@ -1,7 +0,0 @@
-const API_KEY_STORAGE_KEY = 'adminApiKey'
-
-export const storage = {
-  getApiKey: () => localStorage.getItem(API_KEY_STORAGE_KEY),
-  setApiKey: (key: string) => localStorage.setItem(API_KEY_STORAGE_KEY, key),
-  removeApiKey: () => localStorage.removeItem(API_KEY_STORAGE_KEY),
-}

admin-ui/src/lib/utils.ts

@@ -1,106 +0,0 @@
-import { clsx, type ClassValue } from 'clsx'
-import { twMerge } from 'tailwind-merge'
-
-export function cn(...inputs: ClassValue[]) {
-  return twMerge(clsx(inputs))
-}
-
-/**
- * 解析后端错误响应，提取用户友好的错误信息
- */
-export interface ParsedError {
-  /** 简短的错误标题 */
-  title: string
-  /** 详细的错误描述 */
-  detail?: string
-  /** 错误类型 */
-  type?: string
-}
-
-/**
- * 从错误对象中提取错误消息
- * 支持 Axios 错误和普通 Error 对象
- */
-export function extractErrorMessage(error: unknown): string {
-  const parsed = parseError(error)
-  return parsed.title
-}
-
-/**
- * 解析错误，返回结构化的错误信息
- */
-export function parseError(error: unknown): ParsedError {
-  if (!error || typeof error !== 'object') {
-    return { title: '未知错误' }
-  }
-
-  const axiosError = error as Record<string, unknown>
-  const response = axiosError.response as Record<string, unknown> | undefined
-  const data = response?.data as Record<string, unknown> | undefined
-  const errorObj = data?.error as Record<string, unknown> | undefined
-
-  // 尝试从后端错误响应中提取信息
-  if (errorObj && typeof errorObj.message === 'string') {
-    const message = errorObj.message
-    const type = typeof errorObj.type === 'string' ? errorObj.type : undefined
-
-    // 解析嵌套的错误信息（如：上游服务错误: 权限不足: 403 {...}）
-    const parsed = parseNestedErrorMessage(message)
-
-    return {
-      title: parsed.title,
-      detail: parsed.detail,
-      type,
-    }
-  }
-
-  // 回退到 Error.message
-  if ('message' in axiosError && typeof axiosError.message === 'string') {
-    return { title: axiosError.message }
-  }
-
-  return { title: '未知错误' }
-}
-
-/**
- * 解析嵌套的错误消息
- * 例如："上游服务错误: 权限不足，无法获取使用额度: 403 Forbidden {...}"
- */
-function parseNestedErrorMessage(message: string): { title: string; detail?: string } {
-  // 尝试提取 HTTP 状态码（如 403、502 等）
-  const statusMatch = message.match(/(\d{3})\s+\w+/)
-  const statusCode = statusMatch ? statusMatch[1] : null
-
-  // 尝试提取 JSON 中的 message 字段
-  const jsonMatch = message.match(/\{[^{}]*"message"\s*:\s*"([^"]+)"[^{}]*\}/)
-  if (jsonMatch) {
-    const innerMessage = jsonMatch[1]
-    // 提取主要错误原因（去掉前缀）
-    const parts = message.split(':').map(s => s.trim())
-    const mainReason = parts.length > 1 ? parts[1].split(':')[0] : parts[0]
-
-    // 在 title 中包含状态码
-    const title = statusCode
-      ? `${mainReason || '服务错误'} (${statusCode})`
-      : (mainReason || '服务错误')
-
-    return {
-      title,
-      detail: innerMessage,
-    }
-  }
-
-  // 尝试按冒号分割，提取主要信息
-  const colonParts = message.split(':')
-  if (colonParts.length >= 2) {
-    const mainPart = colonParts[1].trim().split(':')[0].trim()
-    const title = statusCode ? `${mainPart} (${statusCode})` : mainPart
-
-    return {
-      title,
-      detail: colonParts.slice(2).join(':').trim() || undefined,
-    }
-  }
-
-  return { title: message }
-}

admin-ui/src/main.tsx

@@ -1,22 +0,0 @@
-import React from 'react'
-import ReactDOM from 'react-dom/client'
-import { QueryClient, QueryClientProvider } from '@tanstack/react-query'
-import App from './App'
-import './index.css'
-
-const queryClient = new QueryClient({
-  defaultOptions: {
-    queries: {
-      staleTime: 5000,
-      refetchOnWindowFocus: false,
-    },
-  },
-})
-
-ReactDOM.createRoot(document.getElementById('root')!).render(
-  <React.StrictMode>
-    <QueryClientProvider client={queryClient}>
-      <App />
-    </QueryClientProvider>
-  </React.StrictMode>,
-)

admin-ui/src/types/api.ts

@@ -1,69 +0,0 @@
-// 凭据状态响应
-export interface CredentialsStatusResponse {
-  total: number
-  available: number
-  currentId: number
-  credentials: CredentialStatusItem[]
-}
-
-// 单个凭据状态
-export interface CredentialStatusItem {
-  id: number
-  priority: number
-  disabled: boolean
-  failureCount: number
-  isCurrent: boolean
-  expiresAt: string | null
-  authMethod: string | null
-  hasProfileArn: boolean
-}
-
-// 余额响应
-export interface BalanceResponse {
-  id: number
-  subscriptionTitle: string | null
-  currentUsage: number
-  usageLimit: number
-  remaining: number
-  usagePercentage: number
-  nextResetAt: number | null
-}
-
-// 成功响应
-export interface SuccessResponse {
-  success: boolean
-  message: string
-}
-
-// 错误响应
-export interface AdminErrorResponse {
-  error: {
-    type: string
-    message: string
-  }
-}
-
-// 请求类型
-export interface SetDisabledRequest {
-  disabled: boolean
-}
-
-export interface SetPriorityRequest {
-  priority: number
-}
-
-// 添加凭据请求
-export interface AddCredentialRequest {
-  refreshToken: string
-  authMethod?: 'social' | 'idc' | 'builder-id'
-  clientId?: string
-  clientSecret?: string
-  priority?: number
-}
-
-// 添加凭据响应
-export interface AddCredentialResponse {
-  success: boolean
-  message: string
-  credentialId: number
-}

admin-ui/tailwind.config.js

@@ -1,53 +0,0 @@
-/** @type {import('tailwindcss').Config} */
-export default {
-  darkMode: 'class',
-  content: [
-    './index.html',
-    './src/**/*.{js,ts,jsx,tsx}',
-  ],
-  theme: {
-    extend: {
-      colors: {
-        border: 'hsl(var(--border))',
-        input: 'hsl(var(--input))',
-        ring: 'hsl(var(--ring))',
-        background: 'hsl(var(--background))',
-        foreground: 'hsl(var(--foreground))',
-        primary: {
-          DEFAULT: 'hsl(var(--primary))',
-          foreground: 'hsl(var(--primary-foreground))',
-        },
-        secondary: {
-          DEFAULT: 'hsl(var(--secondary))',
-          foreground: 'hsl(var(--secondary-foreground))',
-        },
-        destructive: {
-          DEFAULT: 'hsl(var(--destructive))',
-          foreground: 'hsl(var(--destructive-foreground))',
-        },
-        muted: {
-          DEFAULT: 'hsl(var(--muted))',
-          foreground: 'hsl(var(--muted-foreground))',
-        },
-        accent: {
-          DEFAULT: 'hsl(var(--accent))',
-          foreground: 'hsl(var(--accent-foreground))',
-        },
-        popover: {
-          DEFAULT: 'hsl(var(--popover))',
-          foreground: 'hsl(var(--popover-foreground))',
-        },
-        card: {
-          DEFAULT: 'hsl(var(--card))',
-          foreground: 'hsl(var(--card-foreground))',
-        },
-      },
-      borderRadius: {
-        lg: 'var(--radius)',
-        md: 'calc(var(--radius) - 2px)',
-        sm: 'calc(var(--radius) - 4px)',
-      },
-    },
-  },
-  plugins: [],
-}

admin-ui/tsconfig.json

@@ -1,24 +0,0 @@
-{
-  "compilerOptions": {
-    "target": "ES2020",
-    "useDefineForClassFields": true,
-    "lib": ["ES2020", "DOM", "DOM.Iterable"],
-    "module": "ESNext",
-    "skipLibCheck": true,
-    "moduleResolution": "bundler",
-    "allowImportingTsExtensions": true,
-    "isolatedModules": true,
-    "moduleDetection": "force",
-    "noEmit": true,
-    "jsx": "react-jsx",
-    "strict": true,
-    "noUnusedLocals": true,
-    "noUnusedParameters": true,
-    "noFallthroughCasesInSwitch": true,
-    "baseUrl": ".",
-    "paths": {
-      "@/*": ["./src/*"]
-    }
-  },
-  "include": ["src"]
-}

admin-ui/vite.config.ts

@@ -1,25 +0,0 @@
-import { defineConfig } from 'vite'
-import react from '@vitejs/plugin-react-swc'
-import path from 'path'
-
-export default defineConfig({
-  plugins: [react()],
-  base: '/admin/',
-  resolve: {
-    alias: {
-      '@': path.resolve(__dirname, './src'),
-    },
-  },
-  server: {
-    proxy: {
-      '/api': {
-        target: 'http://localhost:8080',
-        changeOrigin: true,
-      },
-    },
-  },
-  build: {
-    outDir: 'dist',
-    emptyOutDir: true,
-  },
-})

config.example.json

@@ -1,7 +0,0 @@
-{
-  "host": "127.0.0.1",
-  "port": 8990,
-  "apiKey": "sk-kiro-rs-qazWSXedcRFV123456",
-  "region": "us-east-1",
-  "adminApiKey": "sk-admin-your-secret-key"
-}

credentials.example.idc.json

@@ -1,9 +0,0 @@
-{
-  "refreshToken": "xxxxxxxxxxxxxxxxxxxx",
-  "expiresAt": "2025-12-31T02:32:45.144Z",
-  "authMethod": "idc",
-  "clientId": "xxxxxxxxx",
-  "clientSecret": "xxxxxxxxx",
-  "region": "us-east-2",
-  "machineId": "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
-}

credentials.example.multiple.json

@@ -1,19 +0,0 @@
-[
-  {
-    "refreshToken": "xxxxxxxxxxxxxxxxxxxx",
-    "expiresAt": "2025-12-31T02:32:45.144Z",
-    "authMethod": "social",
-    "machineId": "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa",
-    "priority": 0
-  },
-  {
-    "refreshToken": "yyyyyyyyyyyyyyyyyyyy",
-    "expiresAt": "2025-12-31T02:32:45.144Z",
-    "authMethod": "idc",
-    "clientId": "xxxxxxxxx",
-    "clientSecret": "xxxxxxxxx",
-    "region": "us-east-2",
-    "machineId": "bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb",
-    "priority": 1
-  }
-]

credentials.example.social.json

@@ -1,6 +0,0 @@
-{
-  "refreshToken": "xxxxxxxxxxxxxxxxxxxx",
-  "expiresAt": "2025-12-31T02:32:45.144Z",
-  "authMethod": "social",
-  "machineId": "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
-}

entrypoint.sh

@@ -1,61 +0,0 @@
-#!/bin/sh
-
-# 从环境变量生成 config.json
-if [ -n "${ADMIN_API_KEY}" ]; then
-  # 如果设置了 ADMIN_API_KEY，包含在配置中
-  cat > /app/config/config.json << EOF
-{
-  "host": "0.0.0.0",
-  "port": 7860,
-  "apiKey": "${API_KEY:-sk-kiro-rs-default}",
-  "region": "${REGION:-us-east-1}",
-  "adminApiKey": "${ADMIN_API_KEY}"
-}
-EOF
-else
-  # 否则不包含 adminApiKey
-  cat > /app/config/config.json << EOF
-{
-  "host": "0.0.0.0",
-  "port": 7860,
-  "apiKey": "${API_KEY:-sk-kiro-rs-default}",
-  "region": "${REGION:-us-east-1}"
-}
-EOF
-fi
-
-# 从环境变量生成 credentials.json
-# 支持两种模式：
-# 1. 多凭据模式：通过 CREDENTIALS_JSON 环境变量传入完整的 JSON 数组
-# 2. 单凭据模式：通过单独的环境变量（向后兼容）
-
-if [ -n "${CREDENTIALS_JSON}" ]; then
-  # 多凭据模式：直接使用 CREDENTIALS_JSON
-  echo "${CREDENTIALS_JSON}" > /app/config/credentials.json
-  echo "Using multi-credential mode from CREDENTIALS_JSON"
-else
-  # 单凭据模式
-  if [ "${AUTH_METHOD}" = "idc" ]; then
-    cat > /app/config/credentials.json << EOF
-{
-  "refreshToken": "${REFRESH_TOKEN}",
-  "expiresAt": "${EXPIRES_AT:-2020-01-01T00:00:00.000Z}",
-  "authMethod": "idc",
-  "clientId": "${CLIENT_ID}",
-  "clientSecret": "${CLIENT_SECRET}"
-}
-EOF
-  else
-    cat > /app/config/credentials.json << EOF
-{
-  "refreshToken": "${REFRESH_TOKEN}",
-  "expiresAt": "${EXPIRES_AT:-2020-01-01T00:00:00.000Z}",
-  "authMethod": "${AUTH_METHOD:-social}"
-}
-EOF
-  fi
-  echo "Using single-credential mode"
-fi
-
-echo "Starting kiro-rs..."
-exec /app/kiro-rs -c /app/config/config.json --credentials /app/config/credentials.json

src/admin/error.rs

@@ -1,64 +0,0 @@
-//! Admin API 错误类型定义
-
-use std::fmt;
-
-use axum::http::StatusCode;
-
-use super::types::AdminErrorResponse;
-
-/// Admin 服务错误类型
-#[derive(Debug)]
-pub enum AdminServiceError {
-    /// 凭据不存在
-    NotFound { id: u64 },
-
-    /// 上游服务调用失败（网络、API 错误等）
-    UpstreamError(String),
-
-    /// 内部状态错误
-    InternalError(String),
-
-    /// 凭据无效（验证失败）
-    InvalidCredential(String),
-}
-
-impl fmt::Display for AdminServiceError {
-    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
-        match self {
-            AdminServiceError::NotFound { id } => {
-                write!(f, "凭据不存在: {}", id)
-            }
-            AdminServiceError::UpstreamError(msg) => write!(f, "上游服务错误: {}", msg),
-            AdminServiceError::InternalError(msg) => write!(f, "内部错误: {}", msg),
-            AdminServiceError::InvalidCredential(msg) => write!(f, "凭据无效: {}", msg),
-        }
-    }
-}
-
-impl std::error::Error for AdminServiceError {}
-
-impl AdminServiceError {
-    /// 获取对应的 HTTP 状态码
-    pub fn status_code(&self) -> StatusCode {
-        match self {
-            AdminServiceError::NotFound { .. } => StatusCode::NOT_FOUND,
-            AdminServiceError::UpstreamError(_) => StatusCode::BAD_GATEWAY,
-            AdminServiceError::InternalError(_) => StatusCode::INTERNAL_SERVER_ERROR,
-            AdminServiceError::InvalidCredential(_) => StatusCode::BAD_REQUEST,
-        }
-    }
-
-    /// 转换为 API 错误响应
-    pub fn into_response(self) -> AdminErrorResponse {
-        match &self {
-            AdminServiceError::NotFound { .. } => AdminErrorResponse::not_found(self.to_string()),
-            AdminServiceError::UpstreamError(_) => AdminErrorResponse::api_error(self.to_string()),
-            AdminServiceError::InternalError(_) => {
-                AdminErrorResponse::internal_error(self.to_string())
-            }
-            AdminServiceError::InvalidCredential(_) => {
-                AdminErrorResponse::invalid_request(self.to_string())
-            }
-        }
-    }
-}

src/admin/handlers.rs

@@ -1,104 +0,0 @@
-//! Admin API HTTP 处理器
-
-use axum::{
-    Json,
-    extract::{Path, State},
-    response::IntoResponse,
-};
-
-use super::{
-    middleware::AdminState,
-    types::{AddCredentialRequest, SetDisabledRequest, SetPriorityRequest, SuccessResponse},
-};
-
-/// GET /api/admin/credentials
-/// 获取所有凭据状态
-pub async fn get_all_credentials(State(state): State<AdminState>) -> impl IntoResponse {
-    let response = state.service.get_all_credentials();
-    Json(response)
-}
-
-/// POST /api/admin/credentials/:id/disabled
-/// 设置凭据禁用状态
-pub async fn set_credential_disabled(
-    State(state): State<AdminState>,
-    Path(id): Path<u64>,
-    Json(payload): Json<SetDisabledRequest>,
-) -> impl IntoResponse {
-    match state.service.set_disabled(id, payload.disabled) {
-        Ok(_) => {
-            let action = if payload.disabled { "禁用" } else { "启用" };
-            Json(SuccessResponse::new(format!("凭据 #{} 已{}", id, action))).into_response()
-        }
-        Err(e) => (e.status_code(), Json(e.into_response())).into_response(),
-    }
-}
-
-/// POST /api/admin/credentials/:id/priority
-/// 设置凭据优先级
-pub async fn set_credential_priority(
-    State(state): State<AdminState>,
-    Path(id): Path<u64>,
-    Json(payload): Json<SetPriorityRequest>,
-) -> impl IntoResponse {
-    match state.service.set_priority(id, payload.priority) {
-        Ok(_) => Json(SuccessResponse::new(format!(
-            "凭据 #{} 优先级已设置为 {}",
-            id, payload.priority
-        )))
-        .into_response(),
-        Err(e) => (e.status_code(), Json(e.into_response())).into_response(),
-    }
-}
-
-/// POST /api/admin/credentials/:id/reset
-/// 重置失败计数并重新启用
-pub async fn reset_failure_count(
-    State(state): State<AdminState>,
-    Path(id): Path<u64>,
-) -> impl IntoResponse {
-    match state.service.reset_and_enable(id) {
-        Ok(_) => Json(SuccessResponse::new(format!(
-            "凭据 #{} 失败计数已重置并重新启用",
-            id
-        )))
-        .into_response(),
-        Err(e) => (e.status_code(), Json(e.into_response())).into_response(),
-    }
-}
-
-/// GET /api/admin/credentials/:id/balance
-/// 获取指定凭据的余额
-pub async fn get_credential_balance(
-    State(state): State<AdminState>,
-    Path(id): Path<u64>,
-) -> impl IntoResponse {
-    match state.service.get_balance(id).await {
-        Ok(response) => Json(response).into_response(),
-        Err(e) => (e.status_code(), Json(e.into_response())).into_response(),
-    }
-}
-
-/// POST /api/admin/credentials
-/// 添加新凭据
-pub async fn add_credential(
-    State(state): State<AdminState>,
-    Json(payload): Json<AddCredentialRequest>,
-) -> impl IntoResponse {
-    match state.service.add_credential(payload).await {
-        Ok(response) => Json(response).into_response(),
-        Err(e) => (e.status_code(), Json(e.into_response())).into_response(),
-    }
-}
-
-/// DELETE /api/admin/credentials/:id
-/// 删除凭据
-pub async fn delete_credential(
-    State(state): State<AdminState>,
-    Path(id): Path<u64>,
-) -> impl IntoResponse {
-    match state.service.delete_credential(id) {
-        Ok(_) => Json(SuccessResponse::new(format!("凭据 #{} 已删除", id))).into_response(),
-        Err(e) => (e.status_code(), Json(e.into_response())).into_response(),
-    }
-}

src/admin/middleware.rs

@@ -1,50 +0,0 @@
-//! Admin API 中间件
-
-use std::sync::Arc;
-
-use axum::{
-    body::Body,
-    extract::State,
-    http::{Request, StatusCode},
-    middleware::Next,
-    response::{IntoResponse, Json, Response},
-};
-
-use super::service::AdminService;
-use super::types::AdminErrorResponse;
-use crate::common::auth;
-
-/// Admin API 共享状态
-#[derive(Clone)]
-pub struct AdminState {
-    /// Admin API 密钥
-    pub admin_api_key: String,
-    /// Admin 服务
-    pub service: Arc<AdminService>,
-}
-
-impl AdminState {
-    pub fn new(admin_api_key: impl Into<String>, service: AdminService) -> Self {
-        Self {
-            admin_api_key: admin_api_key.into(),
-            service: Arc::new(service),
-        }
-    }
-}
-
-/// Admin API 认证中间件
-pub async fn admin_auth_middleware(
-    State(state): State<AdminState>,
-    request: Request<Body>,
-    next: Next,
-) -> Response {
-    let api_key = auth::extract_api_key(&request);
-
-    match api_key {
-        Some(key) if auth::constant_time_eq(&key, &state.admin_api_key) => next.run(request).await,
-        _ => {
-            let error = AdminErrorResponse::authentication_error();
-            (StatusCode::UNAUTHORIZED, Json(error)).into_response()
-        }
-    }
-}

src/admin/mod.rs

@@ -1,28 +0,0 @@
-//! Admin API 模块
-//!
-//! 提供凭据管理和监控功能的 HTTP API
-//!
-//! # 功能
-//! - 查询所有凭据状态
-//! - 启用/禁用凭据
-//! - 修改凭据优先级
-//! - 重置失败计数
-//! - 查询凭据余额
-//!
-//! # 使用
-//! ```ignore
-//! let admin_service = AdminService::new(token_manager.clone());
-//! let admin_state = AdminState::new(admin_api_key, admin_service);
-//! let admin_router = create_admin_router(admin_state);
-//! ```
-
-mod error;
-mod handlers;
-mod middleware;
-mod router;
-mod service;
-pub mod types;
-
-pub use middleware::AdminState;
-pub use router::create_admin_router;
-pub use service::AdminService;

src/admin/router.rs

@@ -1,47 +0,0 @@
-//! Admin API 路由配置
-
-use axum::{
-    Router, middleware,
-    routing::{delete, get, post},
-};
-
-use super::{
-    handlers::{
-        add_credential, delete_credential, get_all_credentials, get_credential_balance,
-        reset_failure_count, set_credential_disabled, set_credential_priority,
-    },
-    middleware::{AdminState, admin_auth_middleware},
-};
-
-/// 创建 Admin API 路由
-///
-/// # 端点
-/// - `GET /credentials` - 获取所有凭据状态
-/// - `POST /credentials` - 添加新凭据
-/// - `DELETE /credentials/:id` - 删除凭据
-/// - `POST /credentials/:id/disabled` - 设置凭据禁用状态
-/// - `POST /credentials/:id/priority` - 设置凭据优先级
-/// - `POST /credentials/:id/reset` - 重置失败计数
-/// - `GET /credentials/:id/balance` - 获取凭据余额
-///
-/// # 认证
-/// 需要 Admin API Key 认证，支持：
-/// - `x-api-key` header
-/// - `Authorization: Bearer <token>` header
-pub fn create_admin_router(state: AdminState) -> Router {
-    Router::new()
-        .route(
-            "/credentials",
-            get(get_all_credentials).post(add_credential),
-        )
-        .route("/credentials/{id}", delete(delete_credential))
-        .route("/credentials/{id}/disabled", post(set_credential_disabled))
-        .route("/credentials/{id}/priority", post(set_credential_priority))
-        .route("/credentials/{id}/reset", post(reset_failure_count))
-        .route("/credentials/{id}/balance", get(get_credential_balance))
-        .layer(middleware::from_fn_with_state(
-            state.clone(),
-            admin_auth_middleware,
-        ))
-        .with_state(state)
-}

src/admin/service.rs

@@ -1,234 +0,0 @@
-//! Admin API 业务逻辑服务
-
-use std::sync::Arc;
-
-use crate::kiro::model::credentials::KiroCredentials;
-use crate::kiro::token_manager::MultiTokenManager;
-
-use super::error::AdminServiceError;
-use super::types::{
-    AddCredentialRequest, AddCredentialResponse, BalanceResponse, CredentialStatusItem,
-    CredentialsStatusResponse,
-};
-
-/// Admin 服务
-///
-/// 封装所有 Admin API 的业务逻辑
-pub struct AdminService {
-    token_manager: Arc<MultiTokenManager>,
-}
-
-impl AdminService {
-    pub fn new(token_manager: Arc<MultiTokenManager>) -> Self {
-        Self { token_manager }
-    }
-
-    /// 获取所有凭据状态
-    pub fn get_all_credentials(&self) -> CredentialsStatusResponse {
-        let snapshot = self.token_manager.snapshot();
-
-        let mut credentials: Vec<CredentialStatusItem> = snapshot
-            .entries
-            .into_iter()
-            .map(|entry| CredentialStatusItem {
-                id: entry.id,
-                priority: entry.priority,
-                disabled: entry.disabled,
-                failure_count: entry.failure_count,
-                is_current: entry.id == snapshot.current_id,
-                expires_at: entry.expires_at,
-                auth_method: entry.auth_method,
-                has_profile_arn: entry.has_profile_arn,
-            })
-            .collect();
-
-        // 按优先级排序（数字越小优先级越高）
-        credentials.sort_by_key(|c| c.priority);
-
-        CredentialsStatusResponse {
-            total: snapshot.total,
-            available: snapshot.available,
-            current_id: snapshot.current_id,
-            credentials,
-        }
-    }
-
-    /// 设置凭据禁用状态
-    pub fn set_disabled(&self, id: u64, disabled: bool) -> Result<(), AdminServiceError> {
-        // 先获取当前凭据 ID，用于判断是否需要切换
-        let snapshot = self.token_manager.snapshot();
-        let current_id = snapshot.current_id;
-
-        self.token_manager
-            .set_disabled(id, disabled)
-            .map_err(|e| self.classify_error(e, id))?;
-
-        // 只有禁用的是当前凭据时才尝试切换到下一个
-        if disabled && id == current_id {
-            let _ = self.token_manager.switch_to_next();
-        }
-        Ok(())
-    }
-
-    /// 设置凭据优先级
-    pub fn set_priority(&self, id: u64, priority: u32) -> Result<(), AdminServiceError> {
-        self.token_manager
-            .set_priority(id, priority)
-            .map_err(|e| self.classify_error(e, id))
-    }
-
-    /// 重置失败计数并重新启用
-    pub fn reset_and_enable(&self, id: u64) -> Result<(), AdminServiceError> {
-        self.token_manager
-            .reset_and_enable(id)
-            .map_err(|e| self.classify_error(e, id))
-    }
-
-    /// 获取凭据余额
-    pub async fn get_balance(&self, id: u64) -> Result<BalanceResponse, AdminServiceError> {
-        let usage = self
-            .token_manager
-            .get_usage_limits_for(id)
-            .await
-            .map_err(|e| self.classify_balance_error(e, id))?;
-
-        let current_usage = usage.current_usage();
-        let usage_limit = usage.usage_limit();
-        let remaining = (usage_limit - current_usage).max(0.0);
-        let usage_percentage = if usage_limit > 0.0 {
-            (current_usage / usage_limit * 100.0).min(100.0)
-        } else {
-            0.0
-        };
-
-        Ok(BalanceResponse {
-            id,
-            subscription_title: usage.subscription_title().map(|s| s.to_string()),
-            current_usage,
-            usage_limit,
-            remaining,
-            usage_percentage,
-            next_reset_at: usage.next_date_reset,
-        })
-    }
-
-    /// 添加新凭据
-    pub async fn add_credential(
-        &self,
-        req: AddCredentialRequest,
-    ) -> Result<AddCredentialResponse, AdminServiceError> {
-        // 构建凭据对象
-        let new_cred = KiroCredentials {
-            id: None,
-            access_token: None,
-            refresh_token: Some(req.refresh_token),
-            profile_arn: None,
-            expires_at: None,
-            auth_method: Some(req.auth_method),
-            client_id: req.client_id,
-            client_secret: req.client_secret,
-            priority: req.priority,
-            region: req.region,
-            machine_id: req.machine_id,
-        };
-
-        // 调用 token_manager 添加凭据
-        let credential_id = self
-            .token_manager
-            .add_credential(new_cred)
-            .await
-            .map_err(|e| self.classify_add_error(e))?;
-
-        Ok(AddCredentialResponse {
-            success: true,
-            message: format!("凭据添加成功，ID: {}", credential_id),
-            credential_id,
-        })
-    }
-
-    /// 删除凭据
-    pub fn delete_credential(&self, id: u64) -> Result<(), AdminServiceError> {
-        self.token_manager
-            .delete_credential(id)
-            .map_err(|e| self.classify_delete_error(e, id))
-    }
-
-    /// 分类简单操作错误（set_disabled, set_priority, reset_and_enable）
-    fn classify_error(&self, e: anyhow::Error, id: u64) -> AdminServiceError {
-        let msg = e.to_string();
-        if msg.contains("不存在") {
-            AdminServiceError::NotFound { id }
-        } else {
-            AdminServiceError::InternalError(msg)
-        }
-    }
-
-    /// 分类余额查询错误（可能涉及上游 API 调用）
-    fn classify_balance_error(&self, e: anyhow::Error, id: u64) -> AdminServiceError {
-        let msg = e.to_string();
-
-        // 1. 凭据不存在
-        if msg.contains("不存在") {
-            return AdminServiceError::NotFound { id };
-        }
-
-        // 2. 上游服务错误特征：HTTP 响应错误或网络错误
-        let is_upstream_error =
-            // HTTP 响应错误（来自 refresh_*_token 的错误消息）
-            msg.contains("凭证已过期或无效") ||
-            msg.contains("权限不足") ||
-            msg.contains("已被限流") ||
-            msg.contains("服务器错误") ||
-            msg.contains("Token 刷新失败") ||
-            msg.contains("暂时不可用") ||
-            // 网络错误（reqwest 错误）
-            msg.contains("error trying to connect") ||
-            msg.contains("connection") ||
-            msg.contains("timeout") ||
-            msg.contains("timed out");
-
-        if is_upstream_error {
-            AdminServiceError::UpstreamError(msg)
-        } else {
-            // 3. 默认归类为内部错误（本地验证失败、配置错误等）
-            // 包括：缺少 refreshToken、refreshToken 已被截断、无法生成 machineId 等
-            AdminServiceError::InternalError(msg)
-        }
-    }
-
-    /// 分类添加凭据错误
-    fn classify_add_error(&self, e: anyhow::Error) -> AdminServiceError {
-        let msg = e.to_string();
-
-        // 凭据验证失败（refreshToken 无效、格式错误等）
-        let is_invalid_credential = msg.contains("缺少 refreshToken")
-            || msg.contains("refreshToken 为空")
-            || msg.contains("refreshToken 已被截断")
-            || msg.contains("凭证已过期或无效")
-            || msg.contains("权限不足")
-            || msg.contains("已被限流");
-
-        if is_invalid_credential {
-            AdminServiceError::InvalidCredential(msg)
-        } else if msg.contains("error trying to connect")
-            || msg.contains("connection")
-            || msg.contains("timeout")
-        {
-            AdminServiceError::UpstreamError(msg)
-        } else {
-            AdminServiceError::InternalError(msg)
-        }
-    }
-
-    /// 分类删除凭据错误
-    fn classify_delete_error(&self, e: anyhow::Error, id: u64) -> AdminServiceError {
-        let msg = e.to_string();
-        if msg.contains("不存在") {
-            AdminServiceError::NotFound { id }
-        } else if msg.contains("只能删除已禁用的凭据") {
-            AdminServiceError::InvalidCredential(msg)
-        } else {
-            AdminServiceError::InternalError(msg)
-        }
-    }
-}

src/admin/types.rs

@@ -1,187 +0,0 @@
-//! Admin API 类型定义
-
-use serde::{Deserialize, Serialize};
-
-// ============ 凭据状态 ============
-
-/// 所有凭据状态响应
-#[derive(Debug, Serialize)]
-#[serde(rename_all = "camelCase")]
-pub struct CredentialsStatusResponse {
-    /// 凭据总数
-    pub total: usize,
-    /// 可用凭据数量（未禁用）
-    pub available: usize,
-    /// 当前活跃凭据 ID
-    pub current_id: u64,
-    /// 各凭据状态列表
-    pub credentials: Vec<CredentialStatusItem>,
-}
-
-/// 单个凭据的状态信息
-#[derive(Debug, Serialize)]
-#[serde(rename_all = "camelCase")]
-pub struct CredentialStatusItem {
-    /// 凭据唯一 ID
-    pub id: u64,
-    /// 优先级（数字越小优先级越高）
-    pub priority: u32,
-    /// 是否被禁用
-    pub disabled: bool,
-    /// 连续失败次数
-    pub failure_count: u32,
-    /// 是否为当前活跃凭据
-    pub is_current: bool,
-    /// Token 过期时间（RFC3339 格式）
-    pub expires_at: Option<String>,
-    /// 认证方式
-    pub auth_method: Option<String>,
-    /// 是否有 Profile ARN
-    pub has_profile_arn: bool,
-}
-
-// ============ 操作请求 ============
-
-/// 启用/禁用凭据请求
-#[derive(Debug, Deserialize)]
-#[serde(rename_all = "camelCase")]
-pub struct SetDisabledRequest {
-    /// 是否禁用
-    pub disabled: bool,
-}
-
-/// 修改优先级请求
-#[derive(Debug, Deserialize)]
-#[serde(rename_all = "camelCase")]
-pub struct SetPriorityRequest {
-    /// 新优先级值
-    pub priority: u32,
-}
-
-/// 添加凭据请求
-#[derive(Debug, Deserialize)]
-#[serde(rename_all = "camelCase")]
-pub struct AddCredentialRequest {
-    /// 刷新令牌（必填）
-    pub refresh_token: String,
-
-    /// 认证方式（可选，默认 social）
-    #[serde(default = "default_auth_method")]
-    pub auth_method: String,
-
-    /// OIDC Client ID（IdC 认证需要）
-    pub client_id: Option<String>,
-
-    /// OIDC Client Secret（IdC 认证需要）
-    pub client_secret: Option<String>,
-
-    /// 优先级（可选，默认 0）
-    #[serde(default)]
-    pub priority: u32,
-
-    /// 凭据级 Region 配置（用于 OIDC token 刷新）
-    /// 未配置时回退到 config.json 的全局 region
-    pub region: Option<String>,
-
-    /// 凭据级 Machine ID（可选，64 位字符串）
-    /// 未配置时回退到 config.json 的 machineId
-    pub machine_id: Option<String>,
-}
-
-fn default_auth_method() -> String {
-    "social".to_string()
-}
-
-/// 添加凭据成功响应
-#[derive(Debug, Serialize)]
-#[serde(rename_all = "camelCase")]
-pub struct AddCredentialResponse {
-    pub success: bool,
-    pub message: String,
-    /// 新添加的凭据 ID
-    pub credential_id: u64,
-}
-
-// ============ 余额查询 ============
-
-/// 余额查询响应
-#[derive(Debug, Serialize)]
-#[serde(rename_all = "camelCase")]
-pub struct BalanceResponse {
-    /// 凭据 ID
-    pub id: u64,
-    /// 订阅类型
-    pub subscription_title: Option<String>,
-    /// 当前使用量
-    pub current_usage: f64,
-    /// 使用限额
-    pub usage_limit: f64,
-    /// 剩余额度
-    pub remaining: f64,
-    /// 使用百分比
-    pub usage_percentage: f64,
-    /// 下次重置时间（Unix 时间戳）
-    pub next_reset_at: Option<f64>,
-}
-
-// ============ 通用响应 ============
-
-/// 操作成功响应
-#[derive(Debug, Serialize)]
-pub struct SuccessResponse {
-    pub success: bool,
-    pub message: String,
-}
-
-impl SuccessResponse {
-    pub fn new(message: impl Into<String>) -> Self {
-        Self {
-            success: true,
-            message: message.into(),
-        }
-    }
-}
-
-/// 错误响应
-#[derive(Debug, Serialize)]
-pub struct AdminErrorResponse {
-    pub error: AdminError,
-}
-
-#[derive(Debug, Serialize)]
-pub struct AdminError {
-    #[serde(rename = "type")]
-    pub error_type: String,
-    pub message: String,
-}
-
-impl AdminErrorResponse {
-    pub fn new(error_type: impl Into<String>, message: impl Into<String>) -> Self {
-        Self {
-            error: AdminError {
-                error_type: error_type.into(),
-                message: message.into(),
-            },
-        }
-    }
-
-    pub fn invalid_request(message: impl Into<String>) -> Self {
-        Self::new("invalid_request", message)
-    }
-
-    pub fn authentication_error() -> Self {
-        Self::new("authentication_error", "Invalid or missing admin API key")
-    }
-
-    pub fn not_found(message: impl Into<String>) -> Self {
-        Self::new("not_found", message)
-    }
-
-    pub fn api_error(message: impl Into<String>) -> Self {
-        Self::new("api_error", message)
-    }
-
-    pub fn internal_error(message: impl Into<String>) -> Self {
-        Self::new("internal_error", message)
-    }
-}

src/admin_ui/mod.rs

@@ -1,7 +0,0 @@
-//! Admin UI 静态文件服务模块
-//!
-//! 使用 rust-embed 嵌入前端构建产物
-
-mod router;
-
-pub use router::create_admin_ui_router;

src/admin_ui/router.rs

@@ -1,109 +0,0 @@
-//! Admin UI 路由配置
-
-use axum::{
-    Router,
-    body::Body,
-    http::{Response, StatusCode, Uri, header},
-    response::IntoResponse,
-    routing::get,
-};
-use rust_embed::Embed;
-
-/// 嵌入前端构建产物
-#[derive(Embed)]
-#[folder = "admin-ui/dist"]
-struct Asset;
-
-/// 创建 Admin UI 路由
-pub fn create_admin_ui_router() -> Router {
-    Router::new()
-        .route("/", get(index_handler))
-        .route("/{*file}", get(static_handler))
-}
-
-/// 处理首页请求
-async fn index_handler() -> impl IntoResponse {
-    serve_index()
-}
-
-/// 处理静态文件请求
-async fn static_handler(uri: Uri) -> impl IntoResponse {
-    let path = uri.path().trim_start_matches('/');
-
-    // 安全检查：拒绝包含 .. 的路径
-    if path.contains("..") {
-        return Response::builder()
-            .status(StatusCode::BAD_REQUEST)
-            .body(Body::from("Invalid path"))
-            .expect("Failed to build response");
-    }
-
-    // 尝试获取请求的文件
-    if let Some(content) = Asset::get(path) {
-        let mime = mime_guess::from_path(path)
-            .first_or_octet_stream()
-            .to_string();
-
-        // 根据文件类型设置不同的缓存策略
-        let cache_control = get_cache_control(path);
-
-        return Response::builder()
-            .status(StatusCode::OK)
-            .header(header::CONTENT_TYPE, mime)
-            .header(header::CACHE_CONTROL, cache_control)
-            .body(Body::from(content.data.into_owned()))
-            .expect("Failed to build response");
-    }
-
-    // SPA fallback: 如果文件不存在且不是资源文件，返回 index.html
-    if !is_asset_path(path) {
-        return serve_index();
-    }
-
-    // 404
-    Response::builder()
-        .status(StatusCode::NOT_FOUND)
-        .body(Body::from("Not found"))
-        .expect("Failed to build response")
-}
-
-/// 提供 index.html
-fn serve_index() -> Response<Body> {
-    match Asset::get("index.html") {
-        Some(content) => Response::builder()
-            .status(StatusCode::OK)
-            .header(header::CONTENT_TYPE, "text/html; charset=utf-8")
-            .header(header::CACHE_CONTROL, "no-cache")
-            .body(Body::from(content.data.into_owned()))
-            .expect("Failed to build response"),
-        None => Response::builder()
-            .status(StatusCode::NOT_FOUND)
-            .body(Body::from(
-                "Admin UI not built. Run 'pnpm build' in admin-ui directory.",
-            ))
-            .expect("Failed to build response"),
-    }
-}
-
-/// 根据文件类型返回合适的缓存策略
-fn get_cache_control(path: &str) -> &'static str {
-    if path.ends_with(".html") {
-        // HTML 文件不缓存，确保用户获取最新版本
-        "no-cache"
-    } else if path.starts_with("assets/") {
-        // assets/ 目录下的文件带有内容哈希，可以长期缓存
-        "public, max-age=31536000, immutable"
-    } else {
-        // 其他文件（如 favicon）使用较短的缓存
-        "public, max-age=3600"
-    }
-}
-
-/// 判断是否为资源文件路径（有扩展名的文件）
-fn is_asset_path(path: &str) -> bool {
-    // 检查最后一个路径段是否包含扩展名
-    path.rsplit('/')
-        .next()
-        .map(|filename| filename.contains('.'))
-        .unwrap_or(false)
-}

src/anthropic/converter.rs

@@ -1,1118 +0,0 @@
-//! Anthropic → Kiro 协议转换器
-//!
-//! 负责将 Anthropic API 请求格式转换为 Kiro API 请求格式
-
-use uuid::Uuid;
-
-use crate::kiro::model::requests::conversation::{
-    AssistantMessage, ConversationState, CurrentMessage, HistoryAssistantMessage,
-    HistoryUserMessage, KiroImage, Message, UserInputMessage, UserInputMessageContext, UserMessage,
-};
-use crate::kiro::model::requests::tool::{
-    InputSchema, Tool, ToolResult, ToolSpecification, ToolUseEntry,
-};
-
-use super::types::{ContentBlock, MessagesRequest, Thinking};
-
-/// 模型映射：将 Anthropic 模型名映射到 Kiro 模型 ID
-///
-/// 按照用户要求：
-/// - 所有 sonnet → claude-sonnet-4.5
-/// - 所有 opus → claude-opus-4.5
-/// - 所有 haiku → claude-haiku-4.5
-pub fn map_model(model: &str) -> Option<String> {
-    let model_lower = model.to_lowercase();
-
-    if model_lower.contains("sonnet") {
-        Some("claude-sonnet-4.5".to_string())
-    } else if model_lower.contains("opus") {
-        Some("claude-opus-4.5".to_string())
-    } else if model_lower.contains("haiku") {
-        Some("claude-haiku-4.5".to_string())
-    } else {
-        None
-    }
-}
-
-/// 转换结果
-#[derive(Debug)]
-pub struct ConversionResult {
-    /// 转换后的 Kiro 请求
-    pub conversation_state: ConversationState,
-}
-
-/// 转换错误
-#[derive(Debug)]
-pub enum ConversionError {
-    UnsupportedModel(String),
-    EmptyMessages,
-}
-
-impl std::fmt::Display for ConversionError {
-    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
-        match self {
-            ConversionError::UnsupportedModel(model) => write!(f, "模型不支持: {}", model),
-            ConversionError::EmptyMessages => write!(f, "消息列表为空"),
-        }
-    }
-}
-
-impl std::error::Error for ConversionError {}
-
-/// 从 metadata.user_id 中提取 session UUID
-///
-/// user_id 格式: user_xxx_account__session_0b4445e1-f5be-49e1-87ce-62bbc28ad705
-/// 提取 session_ 后面的 UUID 作为 conversationId
-fn extract_session_id(user_id: &str) -> Option<String> {
-    // 查找 "session_" 后面的内容
-    if let Some(pos) = user_id.find("session_") {
-        let session_part = &user_id[pos + 8..]; // "session_" 长度为 8
-        // session_part 应该是 UUID 格式: xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
-        // 验证是否是有效的 UUID 格式（36 字符，包含 4 个连字符）
-        if session_part.len() >= 36 {
-            let uuid_str = &session_part[..36];
-            // 简单验证 UUID 格式
-            if uuid_str.chars().filter(|c| *c == '-').count() == 4 {
-                return Some(uuid_str.to_string());
-            }
-        }
-    }
-    None
-}
-
-/// 收集历史消息中使用的所有工具名称
-fn collect_history_tool_names(history: &[Message]) -> Vec<String> {
-    let mut tool_names = Vec::new();
-
-    for msg in history {
-        if let Message::Assistant(assistant_msg) = msg {
-            if let Some(ref tool_uses) = assistant_msg.assistant_response_message.tool_uses {
-                for tool_use in tool_uses {
-                    if !tool_names.contains(&tool_use.name) {
-                        tool_names.push(tool_use.name.clone());
-                    }
-                }
-            }
-        }
-    }
-
-    tool_names
-}
-
-/// 为历史中使用但不在 tools 列表中的工具创建占位符定义
-/// Kiro API 要求：历史消息中引用的工具必须在 currentMessage.tools 中有定义
-fn create_placeholder_tool(name: &str) -> Tool {
-    Tool {
-        tool_specification: ToolSpecification {
-            name: name.to_string(),
-            description: "Tool used in conversation history".to_string(),
-            input_schema: InputSchema::from_json(serde_json::json!({
-                "$schema": "http://json-schema.org/draft-07/schema#",
-                "type": "object",
-                "properties": {},
-                "required": [],
-                "additionalProperties": true
-            })),
-        },
-    }
-}
-
-/// 将 Anthropic 请求转换为 Kiro 请求
-pub fn convert_request(req: &MessagesRequest) -> Result<ConversionResult, ConversionError> {
-    // 1. 映射模型
-    let model_id = map_model(&req.model)
-        .ok_or_else(|| ConversionError::UnsupportedModel(req.model.clone()))?;
-
-    // 2. 检查消息列表
-    if req.messages.is_empty() {
-        return Err(ConversionError::EmptyMessages);
-    }
-
-    // 3. 生成会话 ID 和代理 ID
-    // 优先从 metadata.user_id 中提取 session UUID 作为 conversationId
-    let conversation_id = req
-        .metadata
-        .as_ref()
-        .and_then(|m| m.user_id.as_ref())
-        .and_then(|user_id| extract_session_id(user_id))
-        .unwrap_or_else(|| Uuid::new_v4().to_string());
-    let agent_continuation_id = Uuid::new_v4().to_string();
-
-    // 4. 确定触发类型
-    let chat_trigger_type = determine_chat_trigger_type(req);
-
-    // 5. 处理最后一条消息作为 current_message
-    let last_message = req.messages.last().unwrap();
-    let (text_content, images, tool_results) = process_message_content(&last_message.content)?;
-
-    // 6. 转换工具定义
-    let mut tools = convert_tools(&req.tools);
-
-    // 7. 构建历史消息（需要先构建，以便收集历史中使用的工具）
-    let history = build_history(req, &model_id)?;
-
-    // 8. 验证并过滤 tool_use/tool_result 配对
-    // 移除孤立的 tool_result（没有对应的 tool_use）
-    let validated_tool_results = validate_tool_pairing(&history, &tool_results);
-
-    // 9. 收集历史中使用的工具名称，为缺失的工具生成占位符定义
-    // Kiro API 要求：历史消息中引用的工具必须在 tools 列表中有定义
-    // 注意：Kiro 匹配工具名称时忽略大小写，所以这里也需要忽略大小写比较
-    let history_tool_names = collect_history_tool_names(&history);
-    let existing_tool_names: std::collections::HashSet<_> = tools
-        .iter()
-        .map(|t| t.tool_specification.name.to_lowercase())
-        .collect();
-
-    for tool_name in history_tool_names {
-        if !existing_tool_names.contains(&tool_name.to_lowercase()) {
-            tools.push(create_placeholder_tool(&tool_name));
-        }
-    }
-
-    // 10. 构建 UserInputMessageContext
-    let mut context = UserInputMessageContext::new();
-    if !tools.is_empty() {
-        context = context.with_tools(tools);
-    }
-    if !validated_tool_results.is_empty() {
-        context = context.with_tool_results(validated_tool_results);
-    }
-
-    // 11. 构建当前消息
-    // 保留文本内容，即使有工具结果也不丢弃用户文本
-    let content = text_content;
-
-    let mut user_input = UserInputMessage::new(content, &model_id)
-        .with_context(context)
-        .with_origin("AI_EDITOR");
-
-    if !images.is_empty() {
-        user_input = user_input.with_images(images);
-    }
-
-    let current_message = CurrentMessage::new(user_input);
-
-    // 12. 构建 ConversationState
-    let conversation_state = ConversationState::new(conversation_id)
-        .with_agent_continuation_id(agent_continuation_id)
-        .with_agent_task_type("vibe")
-        .with_chat_trigger_type(chat_trigger_type)
-        .with_current_message(current_message)
-        .with_history(history);
-
-    Ok(ConversionResult { conversation_state })
-}
-
-/// 确定聊天触发类型
-/// "AUTO" 模式可能会导致 400 Bad Request 错误
-fn determine_chat_trigger_type(_req: &MessagesRequest) -> String {
-    "MANUAL".to_string()
-}
-
-/// 处理消息内容，提取文本、图片和工具结果
-fn process_message_content(
-    content: &serde_json::Value,
-) -> Result<(String, Vec<KiroImage>, Vec<ToolResult>), ConversionError> {
-    let mut text_parts = Vec::new();
-    let mut images = Vec::new();
-    let mut tool_results = Vec::new();
-
-    match content {
-        serde_json::Value::String(s) => {
-            text_parts.push(s.clone());
-        }
-        serde_json::Value::Array(arr) => {
-            for item in arr {
-                if let Ok(block) = serde_json::from_value::<ContentBlock>(item.clone()) {
-                    match block.block_type.as_str() {
-                        "text" => {
-                            if let Some(text) = block.text {
-                                text_parts.push(text);
-                            }
-                        }
-                        "image" => {
-                            if let Some(source) = block.source {
-                                if let Some(format) = get_image_format(&source.media_type) {
-                                    images.push(KiroImage::from_base64(format, source.data));
-                                }
-                            }
-                        }
-                        "tool_result" => {
-                            if let Some(tool_use_id) = block.tool_use_id {
-                                let result_content = extract_tool_result_content(&block.content);
-                                let is_error = block.is_error.unwrap_or(false);
-
-                                let mut result = if is_error {
-                                    ToolResult::error(&tool_use_id, result_content)
-                                } else {
-                                    ToolResult::success(&tool_use_id, result_content)
-                                };
-                                result.status =
-                                    Some(if is_error { "error" } else { "success" }.to_string());
-
-                                tool_results.push(result);
-                            }
-                        }
-                        "tool_use" => {
-                            // tool_use 在 assistant 消息中处理，这里忽略
-                        }
-                        _ => {}
-                    }
-                }
-            }
-        }
-        _ => {}
-    }
-
-    Ok((text_parts.join("\n"), images, tool_results))
-}
-
-/// 从 media_type 获取图片格式
-fn get_image_format(media_type: &str) -> Option<String> {
-    match media_type {
-        "image/jpeg" => Some("jpeg".to_string()),
-        "image/png" => Some("png".to_string()),
-        "image/gif" => Some("gif".to_string()),
-        "image/webp" => Some("webp".to_string()),
-        _ => None,
-    }
-}
-
-/// 提取工具结果内容
-fn extract_tool_result_content(content: &Option<serde_json::Value>) -> String {
-    match content {
-        Some(serde_json::Value::String(s)) => s.clone(),
-        Some(serde_json::Value::Array(arr)) => {
-            let mut parts = Vec::new();
-            for item in arr {
-                if let Some(text) = item.get("text").and_then(|v| v.as_str()) {
-                    parts.push(text.to_string());
-                }
-            }
-            parts.join("\n")
-        }
-        Some(v) => v.to_string(),
-        None => String::new(),
-    }
-}
-
-/// 验证并过滤 tool_use/tool_result 配对
-///
-/// 收集所有 tool_use_id，验证 tool_result 是否匹配
-/// 静默跳过孤立的 tool_use 和 tool_result，输出警告日志
-///
-/// # Arguments
-/// * `history` - 历史消息引用
-/// * `tool_results` - 当前消息中的 tool_result 列表
-///
-/// # Returns
-/// 经过验证和过滤后的 tool_result 列表
-fn validate_tool_pairing(history: &[Message], tool_results: &[ToolResult]) -> Vec<ToolResult> {
-    use std::collections::HashSet;
-
-    // 1. 收集所有历史中的 tool_use_id
-    let mut all_tool_use_ids: HashSet<String> = HashSet::new();
-    // 2. 收集历史中已经有 tool_result 的 tool_use_id
-    let mut history_tool_result_ids: HashSet<String> = HashSet::new();
-
-    for msg in history {
-        match msg {
-            Message::Assistant(assistant_msg) => {
-                if let Some(ref tool_uses) = assistant_msg.assistant_response_message.tool_uses {
-                    for tool_use in tool_uses {
-                        all_tool_use_ids.insert(tool_use.tool_use_id.clone());
-                    }
-                }
-            }
-            Message::User(user_msg) => {
-                // 收集历史 user 消息中的 tool_results
-                for result in &user_msg.user_input_message.user_input_message_context.tool_results
-                {
-                    history_tool_result_ids.insert(result.tool_use_id.clone());
-                }
-            }
-        }
-    }
-
-    // 3. 计算真正未配对的 tool_use_ids（排除历史中已配对的）
-    let mut unpaired_tool_use_ids: HashSet<String> = all_tool_use_ids
-        .difference(&history_tool_result_ids)
-        .cloned()
-        .collect();
-
-    // 4. 过滤并验证当前消息的 tool_results
-    let mut filtered_results = Vec::new();
-
-    for result in tool_results {
-        if unpaired_tool_use_ids.contains(&result.tool_use_id) {
-            // 配对成功
-            filtered_results.push(result.clone());
-            unpaired_tool_use_ids.remove(&result.tool_use_id);
-        } else if all_tool_use_ids.contains(&result.tool_use_id) {
-            // tool_use 存在但已经在历史中配对过了，这是重复的 tool_result
-            tracing::warn!(
-                "跳过重复的 tool_result：该 tool_use 已在历史中配对，tool_use_id={}",
-                result.tool_use_id
-            );
-        } else {
-            // 孤立 tool_result - 找不到对应的 tool_use
-            tracing::warn!(
-                "跳过孤立的 tool_result：找不到对应的 tool_use，tool_use_id={}",
-                result.tool_use_id
-            );
-        }
-    }
-
-    // 5. 检测真正孤立的 tool_use（有 tool_use 但在历史和当前消息中都没有 tool_result）
-    for orphaned_id in &unpaired_tool_use_ids {
-        tracing::warn!(
-            "检测到孤立的 tool_use：找不到对应的 tool_result，tool_use_id={}",
-            orphaned_id
-        );
-    }
-
-    filtered_results
-}
-
-/// 转换工具定义
-fn convert_tools(tools: &Option<Vec<super::types::Tool>>) -> Vec<Tool> {
-    let Some(tools) = tools else {
-        return Vec::new();
-    };
-
-    tools
-        .iter()
-        .map(|t| {
-            let description = t.description.clone();
-            // 限制描述长度为 10000 字符（安全截断 UTF-8，单次遍历）
-            let description = match description.char_indices().nth(10000) {
-                Some((idx, _)) => description[..idx].to_string(),
-                None => description,
-            };
-
-            Tool {
-                tool_specification: ToolSpecification {
-                    name: t.name.clone(),
-                    description,
-                    input_schema: InputSchema::from_json(serde_json::json!(t.input_schema)),
-                },
-            }
-        })
-        .collect()
-}
-
-/// 生成thinking标签前缀
-fn generate_thinking_prefix(thinking: &Option<Thinking>) -> Option<String> {
-    if let Some(t) = thinking {
-        if t.thinking_type == "enabled" {
-            return Some(format!(
-                "<thinking_mode>enabled</thinking_mode><max_thinking_length>{}</max_thinking_length>",
-                t.budget_tokens
-            ));
-        }
-    }
-    None
-}
-
-/// 检查内容是否已包含thinking标签
-fn has_thinking_tags(content: &str) -> bool {
-    content.contains("<thinking_mode>") || content.contains("<max_thinking_length>")
-}
-
-/// 构建历史消息
-fn build_history(req: &MessagesRequest, model_id: &str) -> Result<Vec<Message>, ConversionError> {
-    let mut history = Vec::new();
-
-    // 生成thinking前缀（如果需要）
-    let thinking_prefix = generate_thinking_prefix(&req.thinking);
-
-    // 1. 处理系统消息
-    if let Some(ref system) = req.system {
-        let system_content: String = system
-            .iter()
-            .map(|s| s.text.clone())
-            .collect::<Vec<_>>()
-            .join("\n");
-
-        if !system_content.is_empty() {
-            // 注入thinking标签到系统消息最前面（如果需要且不存在）
-            let final_content = if let Some(ref prefix) = thinking_prefix {
-                if !has_thinking_tags(&system_content) {
-                    format!("{}\n{}", prefix, system_content)
-                } else {
-                    system_content
-                }
-            } else {
-                system_content
-            };
-
-            // 系统消息作为 user + assistant 配对
-            let user_msg = HistoryUserMessage::new(final_content, model_id);
-            history.push(Message::User(user_msg));
-
-            let assistant_msg = HistoryAssistantMessage::new("I will follow these instructions.");
-            history.push(Message::Assistant(assistant_msg));
-        }
-    } else if let Some(ref prefix) = thinking_prefix {
-        // 没有系统消息但有thinking配置，插入新的系统消息
-        let user_msg = HistoryUserMessage::new(prefix.clone(), model_id);
-        history.push(Message::User(user_msg));
-
-        let assistant_msg = HistoryAssistantMessage::new("I will follow these instructions.");
-        history.push(Message::Assistant(assistant_msg));
-    }
-
-    // 2. 处理常规消息历史
-    // 最后一条消息作为 currentMessage，不加入历史
-    let history_end_index = req.messages.len().saturating_sub(1);
-
-    // 如果最后一条是 assistant，则包含在历史中
-    let last_is_assistant = req
-        .messages
-        .last()
-        .map(|m| m.role == "assistant")
-        .unwrap_or(false);
-
-    let history_end_index = if last_is_assistant {
-        req.messages.len()
-    } else {
-        history_end_index
-    };
-
-    // 收集并配对消息
-    let mut user_buffer: Vec<&super::types::Message> = Vec::new();
-
-    for i in 0..history_end_index {
-        let msg = &req.messages[i];
-
-        if msg.role == "user" {
-            user_buffer.push(msg);
-        } else if msg.role == "assistant" {
-            // 遇到 assistant，处理累积的 user 消息
-            if !user_buffer.is_empty() {
-                let merged_user = merge_user_messages(&user_buffer, model_id)?;
-                history.push(Message::User(merged_user));
-                user_buffer.clear();
-
-                // 添加 assistant 消息
-                let assistant = convert_assistant_message(msg)?;
-                history.push(Message::Assistant(assistant));
-            }
-        }
-    }
-
-    // 处理结尾的孤立 user 消息
-    if !user_buffer.is_empty() {
-        let merged_user = merge_user_messages(&user_buffer, model_id)?;
-        history.push(Message::User(merged_user));
-
-        // 自动配对一个 "OK" 的 assistant 响应
-        let auto_assistant = HistoryAssistantMessage::new("OK");
-        history.push(Message::Assistant(auto_assistant));
-    }
-
-    Ok(history)
-}
-
-/// 合并多个 user 消息
-fn merge_user_messages(
-    messages: &[&super::types::Message],
-    model_id: &str,
-) -> Result<HistoryUserMessage, ConversionError> {
-    let mut content_parts = Vec::new();
-    let mut all_images = Vec::new();
-    let mut all_tool_results = Vec::new();
-
-    for msg in messages {
-        let (text, images, tool_results) = process_message_content(&msg.content)?;
-        if !text.is_empty() {
-            content_parts.push(text);
-        }
-        all_images.extend(images);
-        all_tool_results.extend(tool_results);
-    }
-
-    let content = content_parts.join("\n");
-    // 保留文本内容，即使有工具结果也不丢弃用户文本
-    let mut user_msg = UserMessage::new(&content, model_id);
-
-    if !all_images.is_empty() {
-        user_msg = user_msg.with_images(all_images);
-    }
-
-    if !all_tool_results.is_empty() {
-        let mut ctx = UserInputMessageContext::new();
-        ctx = ctx.with_tool_results(all_tool_results);
-        user_msg = user_msg.with_context(ctx);
-    }
-
-    Ok(HistoryUserMessage {
-        user_input_message: user_msg,
-    })
-}
-
-/// 转换 assistant 消息
-fn convert_assistant_message(
-    msg: &super::types::Message,
-) -> Result<HistoryAssistantMessage, ConversionError> {
-    let mut thinking_content = String::new();
-    let mut text_content = String::new();
-    let mut tool_uses = Vec::new();
-
-    match &msg.content {
-        serde_json::Value::String(s) => {
-            text_content = s.clone();
-        }
-        serde_json::Value::Array(arr) => {
-            for item in arr {
-                if let Ok(block) = serde_json::from_value::<ContentBlock>(item.clone()) {
-                    match block.block_type.as_str() {
-                        "thinking" => {
-                            if let Some(thinking) = block.thinking {
-                                thinking_content.push_str(&thinking);
-                            }
-                        }
-                        "text" => {
-                            if let Some(text) = block.text {
-                                text_content.push_str(&text);
-                            }
-                        }
-                        "tool_use" => {
-                            if let (Some(id), Some(name)) = (block.id, block.name) {
-                                let input = block.input.unwrap_or(serde_json::json!({}));
-                                tool_uses.push(ToolUseEntry::new(id, name).with_input(input));
-                            }
-                        }
-                        _ => {}
-                    }
-                }
-            }
-        }
-        _ => {}
-    }
-
-    // 组合 thinking 和 text 内容
-    // 格式: <thinking>思考内容</thinking>\n\ntext内容
-    // 注意: Kiro API 要求 content 字段不能为空，当只有 tool_use 时需要占位符
-    let final_content = if !thinking_content.is_empty() {
-        if !text_content.is_empty() {
-            format!(
-                "<thinking>{}</thinking>\n\n{}",
-                thinking_content, text_content
-            )
-        } else {
-            format!("<thinking>{}</thinking>", thinking_content)
-        }
-    } else if text_content.is_empty() && !tool_uses.is_empty() {
-        "There is a tool use.".to_string()
-    } else {
-        text_content
-    };
-
-    let mut assistant = AssistantMessage::new(final_content);
-    if !tool_uses.is_empty() {
-        assistant = assistant.with_tool_uses(tool_uses);
-    }
-
-    Ok(HistoryAssistantMessage {
-        assistant_response_message: assistant,
-    })
-}
-
-#[cfg(test)]
-mod tests {
-    use super::*;
-
-    #[test]
-    fn test_map_model_sonnet() {
-        assert!(
-            map_model("claude-sonnet-4-20250514")
-                .unwrap()
-                .contains("sonnet")
-        );
-        assert!(
-            map_model("claude-3-5-sonnet-20241022")
-                .unwrap()
-                .contains("sonnet")
-        );
-    }
-
-    #[test]
-    fn test_map_model_opus() {
-        assert!(
-            map_model("claude-opus-4-20250514")
-                .unwrap()
-                .contains("opus")
-        );
-    }
-
-    #[test]
-    fn test_map_model_haiku() {
-        assert!(
-            map_model("claude-haiku-4-20250514")
-                .unwrap()
-                .contains("haiku")
-        );
-    }
-
-    #[test]
-    fn test_map_model_unsupported() {
-        assert!(map_model("gpt-4").is_none());
-    }
-
-    #[test]
-    fn test_determine_chat_trigger_type() {
-        // 无工具时返回 MANUAL
-        let req = MessagesRequest {
-            model: "claude-sonnet-4".to_string(),
-            max_tokens: 1024,
-            messages: vec![],
-            stream: false,
-            system: None,
-            tools: None,
-            tool_choice: None,
-            thinking: None,
-            metadata: None,
-        };
-        assert_eq!(determine_chat_trigger_type(&req), "MANUAL");
-    }
-
-    #[test]
-    fn test_collect_history_tool_names() {
-        use crate::kiro::model::requests::tool::ToolUseEntry;
-
-        // 创建包含工具使用的历史消息
-        let mut assistant_msg = AssistantMessage::new("I'll read the file.");
-        assistant_msg = assistant_msg.with_tool_uses(vec![
-            ToolUseEntry::new("tool-1", "read")
-                .with_input(serde_json::json!({"path": "/test.txt"})),
-            ToolUseEntry::new("tool-2", "write")
-                .with_input(serde_json::json!({"path": "/out.txt"})),
-        ]);
-
-        let history = vec![
-            Message::User(HistoryUserMessage::new(
-                "Read the file",
-                "claude-sonnet-4.5",
-            )),
-            Message::Assistant(HistoryAssistantMessage {
-                assistant_response_message: assistant_msg,
-            }),
-        ];
-
-        let tool_names = collect_history_tool_names(&history);
-        assert_eq!(tool_names.len(), 2);
-        assert!(tool_names.contains(&"read".to_string()));
-        assert!(tool_names.contains(&"write".to_string()));
-    }
-
-    #[test]
-    fn test_create_placeholder_tool() {
-        let tool = create_placeholder_tool("my_custom_tool");
-
-        assert_eq!(tool.tool_specification.name, "my_custom_tool");
-        assert!(!tool.tool_specification.description.is_empty());
-
-        // 验证 JSON 序列化正确
-        let json = serde_json::to_string(&tool).unwrap();
-        assert!(json.contains("\"name\":\"my_custom_tool\""));
-    }
-
-    #[test]
-    fn test_history_tools_added_to_tools_list() {
-        use super::super::types::Message as AnthropicMessage;
-
-        // 创建一个请求，历史中有工具使用，但 tools 列表为空
-        let req = MessagesRequest {
-            model: "claude-sonnet-4".to_string(),
-            max_tokens: 1024,
-            messages: vec![
-                AnthropicMessage {
-                    role: "user".to_string(),
-                    content: serde_json::json!("Read the file"),
-                },
-                AnthropicMessage {
-                    role: "assistant".to_string(),
-                    content: serde_json::json!([
-                        {"type": "text", "text": "I'll read the file."},
-                        {"type": "tool_use", "id": "tool-1", "name": "read", "input": {"path": "/test.txt"}}
-                    ]),
-                },
-                AnthropicMessage {
-                    role: "user".to_string(),
-                    content: serde_json::json!([
-                        {"type": "tool_result", "tool_use_id": "tool-1", "content": "file content"}
-                    ]),
-                },
-            ],
-            stream: false,
-            system: None,
-            tools: None, // 没有提供工具定义
-            tool_choice: None,
-            thinking: None,
-            metadata: None,
-        };
-
-        let result = convert_request(&req).unwrap();
-
-        // 验证 tools 列表中包含了历史中使用的工具的占位符定义
-        let tools = &result
-            .conversation_state
-            .current_message
-            .user_input_message
-            .user_input_message_context
-            .tools;
-
-        assert!(!tools.is_empty(), "tools 列表不应为空");
-        assert!(
-            tools.iter().any(|t| t.tool_specification.name == "read"),
-            "tools 列表应包含 'read' 工具的占位符定义"
-        );
-    }
-
-    #[test]
-    fn test_extract_session_id_valid() {
-        // 测试有效的 user_id 格式
-        let user_id = "user_0dede55c6dcc4a11a30bbb5e7f22e6fdf86cdeba3820019cc27612af4e1243cd_account__session_8bb5523b-ec7c-4540-a9ca-beb6d79f1552";
-        let session_id = extract_session_id(user_id);
-        assert_eq!(
-            session_id,
-            Some("8bb5523b-ec7c-4540-a9ca-beb6d79f1552".to_string())
-        );
-    }
-
-    #[test]
-    fn test_extract_session_id_no_session() {
-        // 测试没有 session 的 user_id
-        let user_id = "user_0dede55c6dcc4a11a30bbb5e7f22e6fdf86cdeba3820019cc27612af4e1243cd";
-        let session_id = extract_session_id(user_id);
-        assert_eq!(session_id, None);
-    }
-
-    #[test]
-    fn test_extract_session_id_invalid_uuid() {
-        // 测试无效的 UUID 格式
-        let user_id = "user_xxx_session_invalid-uuid";
-        let session_id = extract_session_id(user_id);
-        assert_eq!(session_id, None);
-    }
-
-    #[test]
-    fn test_convert_request_with_session_metadata() {
-        use super::super::types::{Message as AnthropicMessage, Metadata};
-
-        // 测试带有 metadata 的请求，应该使用 session UUID 作为 conversationId
-        let req = MessagesRequest {
-            model: "claude-sonnet-4".to_string(),
-            max_tokens: 1024,
-            messages: vec![AnthropicMessage {
-                role: "user".to_string(),
-                content: serde_json::json!("Hello"),
-            }],
-            stream: false,
-            system: None,
-            tools: None,
-            tool_choice: None,
-            thinking: None,
-            metadata: Some(Metadata {
-                user_id: Some(
-                    "user_0dede55c6dcc4a11a30bbb5e7f22e6fdf86cdeba3820019cc27612af4e1243cd_account__session_a0662283-7fd3-4399-a7eb-52b9a717ae88".to_string(),
-                ),
-            }),
-        };
-
-        let result = convert_request(&req).unwrap();
-        assert_eq!(
-            result.conversation_state.conversation_id,
-            "a0662283-7fd3-4399-a7eb-52b9a717ae88"
-        );
-    }
-
-    #[test]
-    fn test_convert_request_without_metadata() {
-        use super::super::types::Message as AnthropicMessage;
-
-        // 测试没有 metadata 的请求，应该生成新的 UUID
-        let req = MessagesRequest {
-            model: "claude-sonnet-4".to_string(),
-            max_tokens: 1024,
-            messages: vec![AnthropicMessage {
-                role: "user".to_string(),
-                content: serde_json::json!("Hello"),
-            }],
-            stream: false,
-            system: None,
-            tools: None,
-            tool_choice: None,
-            thinking: None,
-            metadata: None,
-        };
-
-        let result = convert_request(&req).unwrap();
-        // 验证生成的是有效的 UUID 格式
-        assert_eq!(result.conversation_state.conversation_id.len(), 36);
-        assert_eq!(
-            result
-                .conversation_state
-                .conversation_id
-                .chars()
-                .filter(|c| *c == '-')
-                .count(),
-            4
-        );
-    }
-
-    #[test]
-    fn test_validate_tool_pairing_orphaned_result() {
-        // 测试孤立的 tool_result 被过滤
-        // 历史中没有 tool_use，但 tool_results 中有 tool_result
-        let history = vec![
-            Message::User(HistoryUserMessage::new("Hello", "claude-sonnet-4.5")),
-            Message::Assistant(HistoryAssistantMessage::new("Hi there!")),
-        ];
-
-        let tool_results = vec![ToolResult::success("orphan-123", "some result")];
-
-        let filtered = validate_tool_pairing(&history, &tool_results);
-
-        // 孤立的 tool_result 应该被过滤掉
-        assert!(filtered.is_empty(), "孤立的 tool_result 应该被过滤");
-    }
-
-    #[test]
-    fn test_validate_tool_pairing_orphaned_use() {
-        use crate::kiro::model::requests::tool::ToolUseEntry;
-
-        // 测试孤立的 tool_use（有 tool_use 但没有对应的 tool_result）
-        let mut assistant_msg = AssistantMessage::new("I'll read the file.");
-        assistant_msg = assistant_msg.with_tool_uses(vec![ToolUseEntry::new("tool-orphan", "read")
-            .with_input(serde_json::json!({"path": "/test.txt"}))]);
-
-        let history = vec![
-            Message::User(HistoryUserMessage::new(
-                "Read the file",
-                "claude-sonnet-4.5",
-            )),
-            Message::Assistant(HistoryAssistantMessage {
-                assistant_response_message: assistant_msg,
-            }),
-        ];
-
-        // 没有 tool_result
-        let tool_results: Vec<ToolResult> = vec![];
-
-        let filtered = validate_tool_pairing(&history, &tool_results);
-
-        // 结果应该为空（因为没有 tool_result）
-        // 同时应该输出警告日志（孤立的 tool_use）
-        assert!(filtered.is_empty());
-    }
-
-    #[test]
-    fn test_validate_tool_pairing_valid() {
-        use crate::kiro::model::requests::tool::ToolUseEntry;
-
-        // 测试正常配对的情况
-        let mut assistant_msg = AssistantMessage::new("I'll read the file.");
-        assistant_msg = assistant_msg.with_tool_uses(vec![ToolUseEntry::new("tool-1", "read")
-            .with_input(serde_json::json!({"path": "/test.txt"}))]);
-
-        let history = vec![
-            Message::User(HistoryUserMessage::new(
-                "Read the file",
-                "claude-sonnet-4.5",
-            )),
-            Message::Assistant(HistoryAssistantMessage {
-                assistant_response_message: assistant_msg,
-            }),
-        ];
-
-        let tool_results = vec![ToolResult::success("tool-1", "file content")];
-
-        let filtered = validate_tool_pairing(&history, &tool_results);
-
-        // 配对成功，应该保留
-        assert_eq!(filtered.len(), 1);
-        assert_eq!(filtered[0].tool_use_id, "tool-1");
-    }
-
-    #[test]
-    fn test_validate_tool_pairing_mixed() {
-        use crate::kiro::model::requests::tool::ToolUseEntry;
-
-        // 测试混合情况：部分配对成功，部分孤立
-        let mut assistant_msg = AssistantMessage::new("I'll use two tools.");
-        assistant_msg = assistant_msg.with_tool_uses(vec![
-            ToolUseEntry::new("tool-1", "read").with_input(serde_json::json!({})),
-            ToolUseEntry::new("tool-2", "write").with_input(serde_json::json!({})),
-        ]);
-
-        let history = vec![
-            Message::User(HistoryUserMessage::new("Do something", "claude-sonnet-4.5")),
-            Message::Assistant(HistoryAssistantMessage {
-                assistant_response_message: assistant_msg,
-            }),
-        ];
-
-        // tool_results: tool-1 配对，tool-3 孤立
-        let tool_results = vec![
-            ToolResult::success("tool-1", "result 1"),
-            ToolResult::success("tool-3", "orphan result"), // 孤立
-        ];
-
-        let filtered = validate_tool_pairing(&history, &tool_results);
-
-        // 只有 tool-1 应该保留
-        assert_eq!(filtered.len(), 1);
-        assert_eq!(filtered[0].tool_use_id, "tool-1");
-        // tool-2 是孤立的 tool_use（无 result），tool-3 是孤立的 tool_result
-    }
-
-    #[test]
-    fn test_validate_tool_pairing_history_already_paired() {
-        use crate::kiro::model::requests::tool::ToolUseEntry;
-
-        // 测试历史中已配对的 tool_use 不应该被报告为孤立
-        // 场景：多轮对话中，之前的 tool_use 已经在历史中有对应的 tool_result
-        let mut assistant_msg1 = AssistantMessage::new("I'll read the file.");
-        assistant_msg1 = assistant_msg1.with_tool_uses(vec![ToolUseEntry::new("tool-1", "read")
-            .with_input(serde_json::json!({"path": "/test.txt"}))]);
-
-        // 构建历史中的 user 消息，包含 tool_result
-        let mut user_msg_with_result = UserMessage::new("", "claude-sonnet-4.5");
-        let mut ctx = UserInputMessageContext::new();
-        ctx = ctx.with_tool_results(vec![ToolResult::success("tool-1", "file content")]);
-        user_msg_with_result = user_msg_with_result.with_context(ctx);
-
-        let history = vec![
-            // 第一轮：用户请求
-            Message::User(HistoryUserMessage::new(
-                "Read the file",
-                "claude-sonnet-4.5",
-            )),
-            // 第一轮：assistant 使用工具
-            Message::Assistant(HistoryAssistantMessage {
-                assistant_response_message: assistant_msg1,
-            }),
-            // 第二轮：用户返回工具结果（历史中已配对）
-            Message::User(HistoryUserMessage {
-                user_input_message: user_msg_with_result,
-            }),
-            // 第二轮：assistant 响应
-            Message::Assistant(HistoryAssistantMessage::new("The file contains...")),
-        ];
-
-        // 当前消息没有 tool_results（用户只是继续对话）
-        let tool_results: Vec<ToolResult> = vec![];
-
-        let filtered = validate_tool_pairing(&history, &tool_results);
-
-        // 结果应该为空，且不应该有孤立 tool_use 的警告
-        // 因为 tool-1 已经在历史中配对了
-        assert!(filtered.is_empty());
-    }
-
-    #[test]
-    fn test_validate_tool_pairing_duplicate_result() {
-        use crate::kiro::model::requests::tool::ToolUseEntry;
-
-        // 测试重复的 tool_result（历史中已配对，当前消息又发送了相同的 tool_result）
-        let mut assistant_msg = AssistantMessage::new("I'll read the file.");
-        assistant_msg = assistant_msg.with_tool_uses(vec![ToolUseEntry::new("tool-1", "read")
-            .with_input(serde_json::json!({"path": "/test.txt"}))]);
-
-        // 历史中已有 tool_result
-        let mut user_msg_with_result = UserMessage::new("", "claude-sonnet-4.5");
-        let mut ctx = UserInputMessageContext::new();
-        ctx = ctx.with_tool_results(vec![ToolResult::success("tool-1", "file content")]);
-        user_msg_with_result = user_msg_with_result.with_context(ctx);
-
-        let history = vec![
-            Message::User(HistoryUserMessage::new(
-                "Read the file",
-                "claude-sonnet-4.5",
-            )),
-            Message::Assistant(HistoryAssistantMessage {
-                assistant_response_message: assistant_msg,
-            }),
-            Message::User(HistoryUserMessage {
-                user_input_message: user_msg_with_result,
-            }),
-            Message::Assistant(HistoryAssistantMessage::new("Done")),
-        ];
-
-        // 当前消息又发送了相同的 tool_result（重复）
-        let tool_results = vec![ToolResult::success("tool-1", "file content again")];
-
-        let filtered = validate_tool_pairing(&history, &tool_results);
-
-        // 重复的 tool_result 应该被过滤掉
-        assert!(filtered.is_empty(), "重复的 tool_result 应该被过滤");
-    }
-
-    #[test]
-    fn test_convert_assistant_message_tool_use_only() {
-        use super::super::types::Message as AnthropicMessage;
-
-        // 测试仅包含 tool_use 的 assistant 消息（无 text 块）
-        // Kiro API 要求 content 字段不能为空
-        let msg = AnthropicMessage {
-            role: "assistant".to_string(),
-            content: serde_json::json!([
-                {"type": "tool_use", "id": "toolu_01ABC", "name": "read_file", "input": {"path": "/test.txt"}}
-            ]),
-        };
-
-        let result = convert_assistant_message(&msg).expect("应该成功转换");
-
-        // 验证 content 不为空（使用占位符）
-        assert!(
-            !result.assistant_response_message.content.is_empty(),
-            "content 不应为空"
-        );
-        assert_eq!(
-            result.assistant_response_message.content, "There is a tool use.",
-            "仅 tool_use 时应使用 'There is a tool use.' 占位符"
-        );
-
-        // 验证 tool_uses 被正确保留
-        let tool_uses = result
-            .assistant_response_message
-            .tool_uses
-            .expect("应该有 tool_uses");
-        assert_eq!(tool_uses.len(), 1);
-        assert_eq!(tool_uses[0].tool_use_id, "toolu_01ABC");
-        assert_eq!(tool_uses[0].name, "read_file");
-    }
-
-    #[test]
-    fn test_convert_assistant_message_with_text_and_tool_use() {
-        use super::super::types::Message as AnthropicMessage;
-
-        // 测试同时包含 text 和 tool_use 的 assistant 消息
-        let msg = AnthropicMessage {
-            role: "assistant".to_string(),
-            content: serde_json::json!([
-                {"type": "text", "text": "Let me read that file for you."},
-                {"type": "tool_use", "id": "toolu_02XYZ", "name": "read_file", "input": {"path": "/data.json"}}
-            ]),
-        };
-
-        let result = convert_assistant_message(&msg).expect("应该成功转换");
-
-        // 验证 content 使用原始文本（不是占位符）
-        assert_eq!(
-            result.assistant_response_message.content,
-            "Let me read that file for you."
-        );
-
-        // 验证 tool_uses 被正确保留
-        let tool_uses = result
-            .assistant_response_message
-            .tool_uses
-            .expect("应该有 tool_uses");
-        assert_eq!(tool_uses.len(), 1);
-        assert_eq!(tool_uses[0].tool_use_id, "toolu_02XYZ");
-    }
-}